linux_wiki:cifs_windows_shares

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
linux_wiki:cifs_windows_shares [2018/03/23 16:17]
billdozor 		linux_wiki:cifs_windows_shares [2019/05/25 23:50] (current)
Line 10: Line 10:
 ---- ----
  
-====== CIFS Server Setup ======+====== Samba (CIFSServer Setup ======
  
 +  * Install the service<code bash>yum install samba samba-client</code>
  
-FIXME -Need to add server install steps.+  * Enable and Start the service<code bash>systemctl enable smb 
 +systemctl start smb</code>
  
 +  * Create a samba user and password<code bash>smbpasswd -a sambauser1</code>
  
-===== Global Config ===== 
  
-Settings to configure globally.+===== Samba Config ===== 
 + 
 +Settings to configure globally and at the share level
  
 /etc/samba/smb.conf<code bash> /etc/samba/smb.conf<code bash>
Line 24: Line 28:
 dns proxy = no dns proxy = no
 server string = Samba Server %v server string = Samba Server %v
 +
 min protocol = SMB2 min protocol = SMB2
 max protocol = SMB3 max protocol = SMB3
 +
 workgroup = WORKGROUP workgroup = WORKGROUP
 log file = /var/log/samba/%m.log log file = /var/log/samba/%m.log
 max log size = 50 max log size = 50
 +
 +##-- Security --##
 +# Only allow the 192.168.1.* network globally to any share
 +hosts allow = 192.168.1.
 security = user security = user
 passdb backend = tdbsam passdb backend = tdbsam
 encrypt passwords = yes encrypt passwords = yes
 client plaintext auth = no client plaintext auth = no
 +
 #-- server signing mandatory : Resolves Security Scanners finding SMB Password Encryption Not Required --# #-- server signing mandatory : Resolves Security Scanners finding SMB Password Encryption Not Required --#
 server signing = mandatory server signing = mandatory
 +
 #-- smb encrypt: Requires Win8/10/Server2012 or newer clients due to smbv3 --# #-- smb encrypt: Requires Win8/10/Server2012 or newer clients due to smbv3 --#
 #smb encrypt = mandatory #smb encrypt = mandatory
-</code> 
  
----- 
- 
-===== Share Config ===== 
- 
-Share config settings. 
- 
-/etc/samba/smb.conf<code bash> 
 [share_name] [share_name]
 path = /path_to_share path = /path_to_share
Line 52: Line 56:
 guest ok = no guest ok = no
 read only = yes read only = yes
-#- Allow only hosts on certain networks only (192.168.1.*) -#+#- Allow only hosts on certain networks only (192.168.1.*) for this share-#
 hosts allow = 192.168.1. 127.0.0.1 hosts allow = 192.168.1. 127.0.0.1
 </code> </code>
 +
 +\\
 +**Config File Help**
 +<code bash>
 +vim /etc/samba/smb.conf.example
 +And
 +man smb.conf
 +</code>
 +
 +\\
 +[Optional] Test samba config syntax
 +<code bash>
 +testparm
 +</code>
 +
 +\\
 +Restart the samba service
 +<code bash>
 +systemctl restart smb
 +</code>
 +
 +\\
 +Test the samba share
 +<code bash>
 +smbclient -L //localhost -U sambauser1
 +</code>
 +  * Enter samba password (not system) when prompted
  
 ---- ----
  • linux_wiki/cifs_windows_shares.1521836271.txt.gz
  • Last modified: 2019/05/25 23:50
  • (external edit)