Hi,

I have Red Hat ES Version 3, I want to be able to copy files from the Linux box onto a Windows box and back again. The windows machines are on a 2003 domain

When I browse to Network servers I can see the Windows domain and all the computers in it, when I try access one of them I get a popup asking for a username and password, wheather I put in the Linux root name and password or the windows administrators one I get a message that I do not have permission to log on. What do I have to do to get the Linux box and Windows box talking to eachother?

thnaks,

L

- Is the Linux box actually a member of the domain?

- When you say you enter a "windows administrator's" username/password, is it a domain admin account you're trying to log in under, or just an admin account local to the specific Windows computer.

- Can the Linux box be seen/acccessed from the Windows computers in the domain?

Hi DMR,

I have sucessfully connected to the windows box using the local admin account.

How do I make the Linux box part of the 2003 domain?

Thanks,

L

Further my quest I found some info at http://www.linuxquestions.org/questions/showthread.php?s=&threadid=249818
but I do not have the /etc/krb5.conf files, where, how do I get that all set up? this post relates to Samba 3, I am running ES Version 3, I assume it is the same?

thnaks for any feedback.

L

When you get the popup try DOMAIN\user as the userid, and the password for the user. ie domain=test user=bob would be TEST\bob.

for joining domain try:

http://www.justlinux.com/forum/showthread.php?s=&threadid=118920

Hi jumpedintothefire,

Thanks for the pointer.

I have some success!

The name of my Linux box is Linux (original huh?). In the run command of my windows machine I can enter \\linux and I get to see 2 "shares" one with my 2003 domain username and the other one called "public". The one with my user name I can create a new text file and write to it and save. when I try access the public one I get a message saying that Public is not accessible, the network could not be found.

In the smb.conf file I uncommented:

[tmp]
comment = Temporary file space
path = /tmp
read only = no
public = yes

I can now see the temp directory from windows and read/ write to this directory.

I created an xpl entry with the same settings as above:

[xpl]
comment = eXplorer file space
path = /xpl/eXplorer
read only = no
public = yes

There are read and execute permissions set on the folder.

but I get the same non access message.

Question 1. How do I set up shares so I can read/ write to any directory?

Question 2.

If I browse from the Linux box via the start menu/ Network Servers, I cannot connect to the windows machines without having to enter my username and password, what do I need to set to allow connection without the pop up authentication step?

Thanks,

L

Q2 - join the domain, or setup fstab with the usr/passwd for the share (use the search button there are a bunch of posts for that)

Q1 - think you need to chmod 777 or 7707 on the share, see 'man chmod'

http://www.justlinux.com/forum/showthread.php?s=&threadid=118288

Has the ADS setup howto, for the kerberos stuff, think you just have to install the rpms for kerberos.

Hi,

Weird stuff.

I implemented the changes to the smb.conf file to allow me to join the Windows domain. All went along very well, I was able to connect to a number of shares on the linux box, read/ write to my heats content. Then I rebuilt the linux box. reconfigured it EXACTLY the same as it was before, I even made a copy of the smb.conf file of the "working" install and dropped it into the ect directory. I also tried to edit the new smb.conf to reflect the original settings etc. The issue now is that when I try access the linux machine from a windows machine I get prompted with an authentication popup:

Incorrect password or unknown username, and 2 fields to fill in a user name and password. No matter what I put in these fields I cannot connect.

Any ideas as to why this behaviour of the pop up authentication is occurring when it was not previously? Nothing has changed on the Windows domain.

thanks,

Linkersun

You must make sure that on your linux system you have usernames and passwords for Samba users, these are NOT the same as your normal Linux user, although they could be. Your smb.conf file does NOT control this either.

For a better explanation use man smb, there it will explain to you in a better way how it works.

Hope it helps.

Thanks leonpmu,

I will check out the man pages as you suggested, but why did it all work OK without usernames and passwords for Samba users?

cheers,

Linkersun

Hi leonpmu,

with reference to: http://www.justlinux.com/forum/showthread.php?s=&threadid=118920


"This eliminates the need to create separate Samba user accounts on your Linux server so your Windows users can access the Samba shares"

I would assume that this supersedes your suggested requirement?

cheers,

L

When you re-did the box, did you rejoin the domain?

Originally posted by linkersun
Hi leonpmu,

with reference to: http://www.justlinux.com/forum/showthread.php?s=&threadid=118920


"This eliminates the need to create separate Samba user accounts on your Linux server so your Windows users can access the Samba shares"

I would assume that this supersedes your suggested requirement?

cheers,

L
The documentation is a little off on that link.
In a W2K3 AD Domain, you should use in smb.conf

workgroup = domain
realm = DOMAIN.COM
Security = ads
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind use default domain = yes
dos filemode = yes

Winbind use default domain allows you to set permissions on directories by chown username instead of chown domain\username.
dos filename is set to yes to prevent problems with users that use offline file synching.
Then join your domain by:

net ads join -U Administrator

Samba Documentation (http://us1.samba.org/samba/docs/man/Samba-Guide/unixclients.html#adssdm)

Hi,

My head is spinning. I am new to Linux and I'm finding what is required and where to find it quite taxing.

Further joining the 2003 domain. The domain is set up in mixed mode. All I want to do is have a share visable from the linux box and have the linux box see the windows box(s) - I don't mind if I have to type in a user name and password to connect - I just need a simple way of getting the 2 to see each other - can any one point me in the right direction, thanks. all the info so far is getting more complex into authentication etc.