CentOS 7下Samba服务器安装配置过程笔记。
假设我们有这样一个场景
共享名 路径 权限SHAREDOC /smb/docs 所有人员包括来宾均可以访问
RDDOCS /smb/tech 仅允许特定组的用户进行读写访问
特定组的组名为RD,目前的Alice、Jack、Tom三个人
安装Samba
# yum -y install samba samba-client samba-common
//或者使用rpm安装
#rpm -ivh samba-4.1.1-37.el7_0.src.rpm
//查看安装版本信息
# rpm -qi samba
Name :
samba
Epoch :
0
Version : 4.1.1
Release :
37.el7_0
Architecture: x86_64
Install Date: Mon 11 Aug 2014 05:10:39 PM CST
Group :
System Environment/Daemons
Size :
1657523
License :
GPLv3+ and LGPLv3+
Signature :
RSA/SHA256, Wed 06 Aug 2014 03:59:24 AM CST, Key ID 24c6a8a7f4a80eb5
Source RPM :
samba-4.1.1-37.el7_0.src.rpm
Build Date :
Wed 06 Aug 2014 03:33:22 AM CST
Build Host :
worker1.bsys.centos.org
Relocations : (not relocatable)
Packager :
CentOS BuildSystem <>
Vendor :
CentOS
URL :
Summary :
Server and Client software to interoperate with Windows machines
Description :
Samba is the standard Windows interoperability
suite of programs for Linux and Unix.
Tips:也之前的SAMBA 3有一个重大的变化是:
security不再支持share
WARNING: Ignoring invalid value 'share' forparameter 'security'
配置Samba服务器
创建共享目录(假设共享/smb目录下的文件)
# mkdir -p /smb/docs
# mkdir -p /smb/tech
配置内核参数
# ulimit -n 16384
# vi /etc/security/limits.conf
#在最后加入以下内容
* - nofile 16384
Tip: 这主要是避免在启动Samba时出现以下警告信息:
rlimit_max: increasing rlimit_max (1024) tominimum Windows limit (16384)
# cd /etc/samba/
//备份原有的配置文件
# cp smb.conf smb.conf.origin
# vi/etc/samba/smb.conf
删除原有所有内容,添加如下内容:
[global]
workgroup=BIGCLOUD
netbios name=ZZSRV2
server string=Samba Server
#security=share
security=user
map to guest = Bad User
[SHAREDOCS]
path=/smb/docs
readonly=yes
browseable=yes
guest ok=yes
[RDDOCS]
path = /smb/tech/
public = no
writable = yes
write list = @RD
validusers = @RD
创建用户并分配权限
//创建操作系统用户
# useraddalice
# useraddjack
# useradd tom
# useradd RD
//修改用户的组
# usermod -a-G RD alice
# usermod -a-G RD jack
# usermod -a-G RD tom
# id alice
uid=1000(alice) gid=1000(alice)groups=1000(alice),1003(RD)
//创建SAMBA用户
# smbpasswd-a alice
# smbpasswd-a jack
# smbpasswd-a tom
//修改目录权限
# chown RD:RD/smb/tech/
# chmod 770/smb/tech
//查看服务状态
# ll -d/smb/tech/
drwxrwx--- 2 RD RD 4096 Aug 11 17:08 /smb/tech/
# systemctlrestart smb
# systemctlenable smb
# systemctlstatus smb
smb.service - Samba SMB Daemon
Loaded: loaded(/usr/lib/systemd/system/smb.service; enabled)
Active: active (running) since Tue2014-08-12 11:38:29 CST; 14s ago
Main PID: 16807 (smbd)
Status: "smbd: ready to serveconnections..."
CGroup: /system.slice/smb.service
16807 /usr/sbin/smbd
16808 /usr/sbin/smbd
systemd[1]:Starting Samba SMB Daemon...
smbd[16807]:[2014/08/12 11:38:29.255341, 0]../lib/util/become_daemon.c:136(daemon_ready)
systemd[1]:Started Samba SMB Daemon.
smbd[16808]:STATUS=daemon 'smbd' finished starting up and ready to serve connectionsfailedto retrieve print...CCESSFUL
Hint:Some lines were ellipsized, use -l to show in full.
测试连通性
// Linux上测试
# smbclient-L localhost -U alice%P@ssw0rd
Domain=[BIGCLOUD] OS=[Unix] Server=[Samba 4.1.1]
Sharename Type Comment
--------- ---- -------
SHAREDOCS Disk
RDDOCS Disk
IPC$ IPC IPC Service (Samba Server)
Domain=[BIGCLOUD] OS=[Unix] Server=[Samba 4.1.1]
Server Comment
--------- -------
Workgroup Master
--------- -------
//Windows上测试
C:\>netuse * /del
您有以下的远程连接:
\\192.168.1.18\d$
继续运行会取消连接。
您想继续此操作吗? (Y/N) [N]: y
命令成功完成。
C:\>netuse \\192.168.188.12 P@ssw0rd /U:alice
命令成功完成。
打开资源管理器进行写入测试
--------------------------------------分割线 --------------------------------------