pagaille
(Matthieu Gaillet)
August 30, 2018, 3:26pm
1
Hey there,
I’m aware that
Authenticated access to shared folders is available with an Active Directory accounts provider. LDAP provider allows guest access only.
But still, is there any (un)supported way to secure the SMB server, even with a static password ?
Thanks for your advice.
Matthieu
mark_nl
(Mark Verlinde)
August 30, 2018, 7:31pm
2
Yes it is possible if you are willing to do some out of “nethserver” configuration.
It’s so lang ago i can’t recall how how i’d managed it but is was discussed it this thread
I do not know if it creates problems.
In my test server with OpenLDAP I bypassed the problem by creating specific users for samba shares
From linux shell:
useradd user_name
passwd user_name
smbpasswd -a user_name
where “user_name” is the user (and password) to use for samba shares
I created a shared folder “myfolder” from the web interface
From Linux shell I assigned the rights to the user user_name:
cd /var/lib/nethserver/ibay/
chown user_name: user_name myfolder -R
From the web interfa…
NOTE It is a old reference : it can be inaccurate! Just to provide an possible direction for your demand.
pagaille
(Matthieu Gaillet)
August 30, 2018, 7:36pm
3
Thanks @mark_nl ! I’ll report my progress.
pagaille
(Matthieu Gaillet)
August 31, 2018, 7:55am
4
Looks like it’s still working. Didn’t perform much tests however.
Anybody sees potential problems other than those related to backup / restore operations ?
mark_nl
(Mark Verlinde)
August 31, 2018, 3:01pm
5
Obviously this configuration is not saved in the backup, i case of a full (disaster) recovery it has to be configured again. AFAIK local passwords are not included in the backup.
Interesting test case is to see weather the ownership of the files are preserved after a restore.
You may create a test file from a windows client to safely delete after it is included in a backup;
Delete and restore this test-file.
Check the owner ship on your server ( ls -l
) before deleting and after restoring it.