Re: cifs-connection to the users unix-home-dir ignores domain-part "domain/username"

adm · ‎2015-07-16

Hi,

the users can connect to their unix-home-directory also via cifs. I realized this with the /etc/cifs_homedir.cfg.
the connection is also succesful, when the user connects from his private computer, username and password
is enough, the domain part is being ignored.
a filter shows the mapping: "NT user name: private_pc\user1 - UNIX user name: user1(12001)
do I miss some configuration so that the connection will be only accepted when also the domain is right ?
thanks
adm

Darkstar · ‎2015-07-28

It will only work when the domain is right, because the NetApp is joined to exactly one domain and can only validate credentials from that domain. So if you joined DOM1 then the user DOM1\foo would be mapped to unix user foo. If a different user (with the same name) from a different domain tries to connect, say, DOM2\foo, he would get an "access denied" since the filer has no means of checking his credentials (the filer knows nothing about domain DOM2, and even if it knew, since it is not joined to DOM2 it could not check the user's credentials)

cifs-connection to the users unix-home-dir ignores domain-part "domain/username"

Get ready to power on