For the longest time, I have a straight-forward samba setup for our office. Everyone has read-write access to all shares and it has served us well for more than two years now. The old setup includes
- a lone user account “user”
- all shares are forced to “user”
- all shares are write-able
- all shares are browse-able
- uses share instead of user
Soon, our office needs to use user authentication for the shares – we have a number of shares that should only be accessible to management while the rest should be accessible by our technical staff. Solutions that readily came to mind are Fedora Directory Service (now known as 386 Directory Server) and Samba PDC. Both are serious challenges for me since LDAP is *not* a friend and I need to get this running as soon as possible.
Any guideposts would be much appreciated.
Hi there. I had to setup a similar thing for my school. I ended up using Samba and Fedora DS in conjunction with LAM (http://lam.sf.net) for user management. It’s quite easy once you sorted out all the little problems one has with the right functioning of the LDAPSamba thing. If you like I can mail you our smb.conf.
Be sure to go through http://directory.fedoraproject.org/wiki/Howto:SSL as well as http://directory.fedoraproject.org/wiki/Howto:Samba