You can use /etc/passwd accounts. When you run 'cifs setup' say that you don't want to install into a domain. Then you'll have to set up NIS or copy in /etc/passwd to the filer. If you are using NT 4 service pack 3 or higher clients you will also have to change a registry setting to allow plaintext passwords. That's described by Microsoft (from their knowledge base web site):
"Unable to connect to SMB server with unencrypted password due to redirector.
Cause:
After applying Service Pack 3, the SMB redirector does not send unencrypted passwords until a registry entry is added to enable unencrypted passwords.
Solution:
Configure the SMB server to use encrypted passwords, or edit the registry of the Windows NT computers to enable sending unencrypted passwords.
NOTE: Configuring the SMB server to use encrypted passwords is the preferred solution, since the registry on each client machine must be edited.
NOTE: The following procedure describes how to edit the registry to enable sending unencrypted passwords. This procedure must be performed on each client machine which connects to the SMB server.
CAUTION: Using Registry Editor incorrectly can cause serious, system-wide problems that may require you to reinstall Windows NT to correct them. Read the following procedure carefully before proceeding.
1) Run the program REGEDT32. 2) Navigate to the following key: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Rdr\Parameters 3) Add the value entry 'EnablePlainTextPassword' of data type REG_DWORD, and set the value to 1. NOTE: The registry entry 'EnablePlainTextPassword' has a range of values from 0 (plaintext password disabled) to 1 (plaintext password enabled). 4) Restart the computer to enable the new settings.
-----Original Message----- From: P.S.Jones P.S.Jones@durham.ac.uk To: toasters@mathworks.com toasters@mathworks.com Date: Wednesday, March 10, 1999 8:08 AM Subject: Accessing CIFS shares with Unix authentication
We have a Network Appliance 740 Filer for evaluation and want to try it in a mixed Unix and NT environment. I think we can handle the Unix side without any real problems. What we are struggling with is how to provide access to the CIFS file store to our NT clients by supplying Unix credentials? I'll explain this in a bit more detail.
Our NT service has no user accounts, or rather it has one, a general auto logon account. Within this account's logon script we prompt for authentication details (real user ID and password) and then map network shares against our existing Netware 3.1 servers. In the summer we plan to retire Netware 3.1 and provide the home file store from a Unix like system. We've tried Samba and quite like it but we want to evaluate the Filer as well. But how can we map a CIFS share from the Filer using just Unix credentials?
I'm trying to read the documentation at the moment and have come across the usermap.cfg file mechanism, but this doesn't seem quite appropriate since we don't have any NT accounts. I wonder if anyone on this list has solved a problem like this? Are we going to have to run Samba anyway for the authentication?
Any comments gratefully received.
-- Paul Jones, ITS, University of Durham, South Road, Durham DH1 3LE Email: P.S.Jones@durham.ac.uk Phone/Fax: 0191 374 2879/3741
There is a similar procedure for Win98 clients, which Mark forgot to mention:
There are two ways, you can edit the registry as shown below:
To enable plain-text passwords, add the Registry entry EnablePlainTextPassword (reg Dword) 1 in the following Registry location: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\Vnetsup
-OR-
On the win98 install disk (CD) there is a file in the TOOLS subdirectory I believe, that is an .inf file that will make this change for you.
Andrew
At 09:02 am 3/10/99 -0800, Mark Muhlestein wrote:
You can use /etc/passwd accounts. When you run 'cifs setup' say that you don't want to install into a domain. Then you'll have to set up NIS or copy in /etc/passwd to the filer. If you are using NT 4 service pack 3 or higher clients you will also have to change a registry setting to allow plaintext passwords. That's described by Microsoft (from their knowledge base web site):
"Unable to connect to SMB server with unencrypted password due to redirector.
Cause:
After applying Service Pack 3, the SMB redirector does not send unencrypted passwords until a registry entry is added to enable unencrypted passwords.
Solution:
Configure the SMB server to use encrypted passwords, or edit the registry of the Windows NT computers to enable sending unencrypted passwords.
NOTE: Configuring the SMB server to use encrypted passwords is the preferred solution, since the registry on each client machine must be edited.
NOTE: The following procedure describes how to edit the registry to enable sending unencrypted passwords. This procedure must be performed on each client machine which connects to the SMB server.
CAUTION: Using Registry Editor incorrectly can cause serious, system-wide problems that may require you to reinstall Windows NT to correct them. Read the following procedure carefully before proceeding.
- Run the program REGEDT32.
- Navigate to the following key:
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Rdr\Parameters 3) Add the value entry 'EnablePlainTextPassword' of data type REG_DWORD, and set the value to 1. NOTE: The registry entry 'EnablePlainTextPassword' has a range of values from 0 (plaintext password disabled) to 1 (plaintext password enabled). 4) Restart the computer to enable the new settings.
-----Original Message----- From: P.S.Jones P.S.Jones@durham.ac.uk To: toasters@mathworks.com toasters@mathworks.com Date: Wednesday, March 10, 1999 8:08 AM Subject: Accessing CIFS shares with Unix authentication
We have a Network Appliance 740 Filer for evaluation and want to try it in a mixed Unix and NT environment. I think we can handle the Unix side without any real problems. What we are struggling with is how to provide access to the CIFS file store to our NT clients by supplying Unix credentials? I'll explain this in a bit more detail.
Our NT service has no user accounts, or rather it has one, a general auto logon account. Within this account's logon script we prompt for authentication details (real user ID and password) and then map network shares against our existing Netware 3.1 servers. In the summer we plan to retire Netware 3.1 and provide the home file store from a Unix like system. We've tried Samba and quite like it but we want to evaluate the Filer as well. But how can we map a CIFS share from the Filer using just Unix credentials?
I'm trying to read the documentation at the moment and have come across the usermap.cfg file mechanism, but this doesn't seem quite appropriate since we don't have any NT accounts. I wonder if anyone
on this list has solved a problem like this? Are we going to have to run Samba anyway for the authentication?
Any comments gratefully received.
-- Paul Jones, ITS, University of Durham, South Road, Durham DH1 3LE Email: P.S.Jones@durham.ac.uk Phone/Fax: 0191 374 2879/3741
-
Andrew Bond -
Mark Muhlestein