Differences
This shows you the differences between two versions of the page.
linux_wiki:cifs_windows_shares [2018/07/12 22:00] billdozor [Samba Config] |
linux_wiki:cifs_windows_shares [2019/05/25 23:50] |
||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== CIFS Windows Shares ====== | ||
- | |||
- | **General Information** | ||
- | |||
- | Creating Samba server file shares (CIFS) and mounting CIFS shares on Linux. | ||
- | |||
- | **Checklist** | ||
- | * Distro(s): Enterprise Linux 6/7 | ||
- | |||
- | ---- | ||
- | |||
- | ====== Samba (CIFS) Server Setup ====== | ||
- | |||
- | * Install the service< | ||
- | |||
- | * Enable and Start the service< | ||
- | systemctl start smb</ | ||
- | |||
- | * Create a samba user and password< | ||
- | |||
- | |||
- | ===== Samba Config ===== | ||
- | |||
- | Settings to configure globally and at the share level | ||
- | |||
- | / | ||
- | [global] | ||
- | dns proxy = no | ||
- | server string = Samba Server %v | ||
- | |||
- | min protocol = SMB2 | ||
- | max protocol = SMB3 | ||
- | |||
- | workgroup = WORKGROUP | ||
- | log file = / | ||
- | max log size = 50 | ||
- | |||
- | ##-- Security --## | ||
- | # Only allow the 192.168.1.* network globally to any share | ||
- | hosts allow = 192.168.1. | ||
- | security = user | ||
- | passdb backend = tdbsam | ||
- | encrypt passwords = yes | ||
- | client plaintext auth = no | ||
- | |||
- | #-- server signing mandatory : Resolves Security Scanners finding SMB Password Encryption Not Required --# | ||
- | server signing = mandatory | ||
- | |||
- | #-- smb encrypt: Requires Win8/ | ||
- | #smb encrypt = mandatory | ||
- | |||
- | [share_name] | ||
- | path = / | ||
- | valid users = sambauser1, sambauser2 | ||
- | browsable = yes | ||
- | guest ok = no | ||
- | read only = yes | ||
- | #- Allow only hosts on certain networks only (192.168.1.*) for this share-# | ||
- | hosts allow = 192.168.1. 127.0.0.1 | ||
- | </ | ||
- | |||
- | \\ | ||
- | **Config File Help** | ||
- | <code bash> | ||
- | vim / | ||
- | And | ||
- | man smb.conf | ||
- | </ | ||
- | |||
- | ---- | ||
- | |||
- | ====== CIFS Client Setup ====== | ||
- | |||
- | - Install Packages< | ||
- | - List remote shares< | ||
- | - Create local directory structure to mount the shares in<code bash> | ||
- | - Create root ssh directory if it does not exist< | ||
- | chmod 700 / | ||
- | - Create the CIFS credentials file< | ||
- | chmod 600 / | ||
- | - Edit the credentials file, add share' | ||
- | |||
- | username=< | ||
- | password=< | ||
- | domain=< | ||
- | - Create persistent CIFS mount in / | ||
- | //< | ||
- | - Mount the share< | ||
- | |||
- | ---- | ||