Re: [Samba] Only admin user can print?

Mon, 13 Nov 2006 07:43:17 -0800

The "valid users" directive was broken in 23a and 23b. You will need to upgrade to 23c or find another method of controlling access to your shares. 
Also, the 23-series requires FQDN - "@DOM_grp" becomes "@DOMAIN\DOM_grp".
See http://us1.samba.org/samba/history/samba-3.0.23c.html for all the things that recently changed. 

Good luck,
Dale

Albrecht Dreß wrote:

Hi all,

after upgrading a FC3 box to FC4 which comes with Samba 3.0.23a rpm's, I
have the really strange effect that /only/ "admin users" can print to
printers shared by the Samba server.  Even a double click on the printer
in Win gives an "access denied".

The access to "normal" shares (homes etc.) still works fine.  Any idea
what went wrong?  How could I debug this condition???  The contents of
the config as reported by testparm is below.

Thanks in advance,
Albrecht


--output from testparm--------------------------------------------------
[global]
        workgroup = xxxx
        realm = xxxx.xxxx.xxx
        security = ADS
        password server = xxx.xxx.xxx.xxx:389, *
        log level = 1
        log file = /var/log/samba/%m.log
        max log size = 0
        load printers = No
        printcap name = cups
        os level = 0
        preferred master = No
        local master = No
        domain master = No
        wins server = xxx.xxx.xxx.xxx, xxx.xxx.xxx.yyy
        idmap uid = 10000-20000
        idmap gid = 10000-20000
        template shell = /bin/bash
        winbind separator = _
        winbind enum users = Yes
        winbind enum groups = Yes
        printer admin = @DOM_grp
        hosts allow = xxx.xxx.xxx., xxx.xxx.yyy

[printers]
        comment = Drucker auf xxx-xxxxx
        path = /opt/samba/printers
        valid users = @DOM_grp
        printable = Yes
        browseable = No

[print$]
        comment = Druckertreiber
        path = /opt/samba/printer-drivers
        valid users = @DOM_grp
        guest ok = Yes
        browseable = No

[ps2pdf]
        comment = Umwandlung in PDF
        path = /opt/samba/ps2pdf
        valid users = @DOM_grp
        guest ok = Yes
        printable = Yes
--end testparm output---------------------------------------------------

All users are reported as member of the DOM_grp group by 'getent group
DOM_grp'.  The spool folders /opt/samba/printers and /opt/samba/ps2pdf
are owned by nobody.nobody and have permissions rwxrwxrwt.


  

--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba






















					Reply via email to