Install the Samba group package:
# yum groupinstall -y "CIFS file server"
Create a new /etc/samba/smb.conf file and add the following lines (for a workgroup named MYGROUP, a server called MYSERVER, a local network with IP addresses in 192.168.1.0/24, a user named user01 and a share called shared):
workgroup = MYGROUP server string = Samba Server Version %v netbios name = MYSERVER interfaces = lo eth0 192.168.1.0/24 hosts allow = 127. 192.168.1. log file = /var/log/samba/log.%m max log size = 50 security = user passdb backend = tdbsam [shared] comment = Shared directory browseable = no path = /shared valid users = @sharedgroup writable = yes
Check the syntax of the configuration file:
# testparm
Create the shared directory:
# mkdir /shared
Create a dedicated group:
# groupadd -g 60000 sharedgroup
Assign this group to the new directory:
# chgrp sharedgroup /shared
Define permissions:
# chmod 2770 /shared
Set the correct SELinux type:
# yum install -y setroubleshoot-server # semanage fcontext -a -t samba_share_t "/shared(/.*)?" # restorecon -R /shared
Add the following new rules to the firewall:
# iptables -I INPUT -m state --state NEW -m udp -p udp --dport 137 -j ACCEPT # iptables -I INPUT -m state --state NEW -m udp -p udp --dport 138 -j ACCEPT # iptables -I INPUT -m state --state NEW -m tcp -p tcp --dport 139 -j ACCEPT # iptables -I INPUT -m state --state NEW -m tcp -p tcp --dport 445 -j ACCEPT
Save the firewall configuration:
# service iptables save
Activate the Samba services at boot:
# chkconfig smb on # chkconfig nmb on # chkconfig winbind on
Start the Samba services:
# service smb start # service nmb start # service winbind start
Create the user user01 with the password user01:
# useradd user01 -s /sbin/nologin # smbpasswd -a user01
Add the new user into the shared group:
# usermod -a -G sharedgroup user01
Test the connection from a client:
# yum install -y cifs-utils # mount.cifs -o rw,username=user01,password=user01 //MYSERVER/shared /mnt
Leave a Reply
You must be logged in to post a comment.