Your windows client is failing to
authenticate when it tries to mount the share. That could be a
simple fix or hideously complicated depending on what type of
Windows network you are running in. Is this lab environment using
a Windows server running as an Active Directory Domain controller
or have you just been working with standalone installs of Linux
and Windows in your lab? Are your windows installs simply based
on a retail version of Windows Home or do you have the Pro or
Enterprise versions licensed?
If you are stuck with a Home only
version or simply want to do ad-hoc stuff without much futher ado
(probably why you have SECURITY=USER stanza in your conf) then
just look at using smbpasswd to create the password hashes
necessary for SMB mounting. This is necessary because Windows and
Unix/Linux have different hashing schemes. This samba wiki link
will probably be a good starting point for you.
If you are an Active Directory network,
you will end up mucking around in a lot more config files in order
to get your Linux boxes to join the Directory as members and then
authenticate against the domain controllers. That can also be a
somewhat simple thing, but it can get hairy if your organization
has infosec in mind and has hardening procedures that they
applied. That's when you might be breaking out Wireshark and
analyzing the exchanges between Linux and the dc to figure out
what sort of insanity is going on in your IT department. If you
aren't the domain admin or aren't good friends with one who also
knows Unix/Linux you may never get anywhere.
This is the result:
# testparm -s
Load smb config files from /etc/samba/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum
Windows limit (16384)
Processing section "[homes]"
Processing section "[cephfs]"
Processing section "[printers]"
Processing section "[print$]"
Loaded services file OK.
Server role: ROLE_STANDALONE
# Global parameters
[global]
load printers = No
netbios name = SAMBA-CEPH
printcap name = cups
security = USER
workgroup = CEPH
smbd: backgroundqueue = no
idmap config * : backend = tdb
cups options = raw
valid users = samba
...
[cephfs]
create mask = 0777
directory mask = 0777
guest ok = Yes
guest _only_ = Yes
kernel share modes = No
path = /
read _only_ = No
vfs objects = ceph
ceph: user_id = samba
ceph:config_file = /etc/ceph/ceph.conf
I cut off some parts I thought were not relevant.
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Wednesday, August 28, 2019 3:09 AM, Konstantin Shalygin
<k0ste@xxxxxxxx> wrote:
I'm running a ceph installation on a lab to evaluate for production and I have a cluster running, but I need to mount on different windows servers and desktops. I created an NFS share and was able to mount it on my Linux desktop, but not a Win 10 desktop. Since it seems that Windows server 2016 is required to mount the NFS share I quit that route and decided to try samba.
I compiled a version of Samba that has this vfs_ceph module, but I can't set it up correctly. It seems I'm missing some user configuration as I've hit this error:
"
~$ smbclient -U samba.gw //10.17.6.68/cephfs_a
WARNING: The "syslog" option is deprecated
Enter WORKGROUP\samba.gw's password:
session setup failed: NT_STATUS_LOGON_FAILURE
"
Does anyone know of any good setup tutorial to follow?
This is my smb config so far:
# Global parameters
[global]
load printers = No
netbios name = SAMBA-CEPH
printcap name = cups
security = USER
workgroup = CEPH
smbd: backgroundqueue = no
idmap config * : backend = tdb
cups options = raw
valid users = samba
[cephfs]
create mask = 0777
directory mask = 0777
guest ok = Yes
guest _only_ = Yes
kernel share modes = No
path = /
read _only_ = No
vfs objects = ceph
ceph: user_id = samba
ceph:config_file = /etc/ceph/ceph.conf
Thanks
Your configuration seems correct, but conf have or don't have
special characters such a spaces, lower case options. First
what you should do is run `testparm -s` and paste here what in
output.
k
_______________________________________________
ceph-users mailing list
ceph-users@xxxxxxxxxxxxxx
http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
