假设我们有这样一个场景
共享名 路径 权限 SHAREDOC /smb/docs 所有人员包括来宾均可以访问 RDDOCS /smb/tech 仅允许特定组的用户进行读写访问
特定组的组名为RD,目前的Alice、Jack、Tom三个人
安装SAMBA
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 # yum -y install samba samba-client samba-common // 或者使用rpm安装 #rpm -ivh samba-4.1.1-37.el7_0.src.rpm // 查看安装版本信息 # rpm -qi samba Name : samba Epoch : 0 Version : 4.1.1 Release : 37.el7_0 Architecture: x86_64 Install Date: Mon 11 Aug 2014 05:10:39 PM CST Group : System Environment /Daemons Size : 1657523 License : GPLv3+ and LGPLv3+ Signature : RSA /SHA256 , Wed 06 Aug 2014 03:59:24 AM CST, Key ID 24c6a8a7f4a80eb5 Source RPM : samba-4.1.1-37.el7_0.src.rpm Build Date : Wed 06 Aug 2014 03:33:22 AM CST Build Host : worker1.bsys.centos.org Relocations : (not relocatable) Packager : CentOS BuildSystem <http: //bugs .centos.org> Vendor : CentOS URL : http: //www .samba.org/ Summary : Server and Client software to interoperate with Windows machines Description : Samba is the standard Windows interoperability suite of programs for Linux and Unix. Tips:也之前的SAMBA 3有一个重大的变化是: security不再支持share WARNING: Ignoring invalid value 'share' forparameter 'security'
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 创建共享目录(假设共享 /smb 目录下的文件) # mkdir -p /smb/docs # mkdir -p /smb/tech 配置内核参数 # ulimit -n 16384 # vi /etc/security/limits.conf #在最后加入以下内容 * - nofile 16384 Tip: 这主要是避免在启动Samba时出现以下警告信息: rlimit_max: increasing rlimit_max (1024) tominimum Windows limit (16384) # cd /etc/samba/ // 备份原有的配置文件 # cp smb.conf smb.conf.origin # vi/etc/samba/smb.conf 删除原有所有内容,添加如下内容: [global] workgroup=BIGCLOUD netbios name=ZZSRV2 server string=Samba Server #security=share security=user map to guest = Bad User [SHAREDOCS] path= /smb/docs readonly = yes browseable= yes guest ok= yes [RDDOCS] path = /smb/tech/ public = no writable = yes write list = @RD validusers = @RD
创建用户并分配权限
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 // 创建操作系统用户 # useraddalice # useraddjack # useradd tom # useradd RD // 修改用户的组 # usermod -a-G RD alice # usermod -a-G RD jack # usermod -a-G RD tom # id alice uid=1000(alice) gid=1000(alice) groups =1000(alice),1003(RD) // 创建SAMBA用户 # smbpasswd-a alice # smbpasswd-a jack # smbpasswd-a tom // 修改目录权限 # chown RD:RD/smb/tech/ # chmod 770/smb/tech // 查看服务状态 # ll -d/smb/tech/ drwxrwx--- 2 RD RD 4096 Aug 11 17:08 /smb/tech/ # systemctlrestart smb # systemctlenable smb # systemctlstatus smb smb.service - Samba SMB Daemon Loaded: loaded( /usr/lib/systemd/system/smb .service; enabled) Active: active (running) since Tue2014-08-12 11:38:29 CST; 14s ago Main PID: 16807 (smbd) Status: "smbd: ready to serveconnections..." CGroup: /system .slice /smb .service 16807 /usr/sbin/smbd 16808 /usr/sbin/smbd systemd[1]:Starting Samba SMB Daemon... smbd[16807]:[2014 /08/12 11:38:29.255341, 0].. /lib/util/become_daemon .c:136(daemon_ready) systemd[1]:Started Samba SMB Daemon. smbd[16808]:STATUS=daemon 'smbd' finished starting up and ready to serve connectionsfailedto retrieve print...CCESSFUL Hint:Some lines were ellipsized, use -l to show in full.
测试连通性
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 // Linux上测试 # smbclient-L localhost -U alice%P@ssw0rd Domain=[BIGCLOUD] OS=[Unix] Server=[Samba 4.1.1] Sharename Type Comment --------- ---- ------- SHAREDOCS Disk RDDOCS Disk IPC$ IPC IPC Service (Samba Server) Domain=[BIGCLOUD] OS=[Unix] Server=[Samba 4.1.1] Server Comment --------- ------- Workgroup Master --------- ------- //Windows 上测试 C:\>netuse * /del 您有以下的远程连接: \\192.168.1.18\d$ 继续运行会取消连接。 您想继续此操作吗? (Y /N ) [N]: y 命令成功完成。 C:\>netuse \\192.168.188.12 P@ssw0rd /U :alice 命令成功完成。 打开资源管理器进行写入测试
本文出自 “李豪” 博客,请务必保留此出处http://leaus.blog.51cto.com/9273485/1540729
转载于:https://www.cnblogs.com/Zoran-/p/5819301.html
相关资源:CentOS 7下Samba服务器的安装与配置