Re: [Samba] Mount CIFS with multiuser option

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Fri, 17 Aug 2012 09:11:09 -0500
Bastien Desalle <BDesalle@xxxxxxxxxxx> wrote:

> Ok but adding the cruid=test does not resolve the problem , here is the 
> error:
> 
> mount.cifs kernel mount options: 
> ip=172.15.1.12,unc=\\chifs1.tmriusa.com\vhdl-d,multiuser,exec._netdev,sec=krb5,cruid=,ver=1,user=Test,pass=********

So here, you're adding cruid=16777217

> mount error(126): Required key not available
> Refer to the mount.cifs(8) manual page (e.g. man mount.cifs)
> 
> and here is my ticket : 
> [bdesalle@chifpga ~]$ klist
> Ticket cache: FILE:/tmp/krb5cc_16777220_UaSFIw

...but here, it looks like this probably owned by uid=16777220? If so,
then it looks like you're just using the wrong cruid= option.

> Default principal: Test at TMRIUSA.COM
> 
> Valid starting     Expires            Service principal
> 08/17/12 08:55:48  08/17/12 18:55:55  krbtgt/TMRIUSA.COM at TMRIUSA.COM
>         renew until 08/24/12 08:55:48
> 
> 
> All that i am trying to do is mount a windows share at boot if possible 
> without having to use any credentials because the share is open to mount 
> for everyone and then use the multiuser to allow each user to create a 
> session in the server and allow them to access the Share but according to 
> their credentials.
> 
> Is that possible ? 

So, do the mount as "anonymous" or "guest" and then allow "real" users
to acquire their own creds? That would be a nice-to-have...

But, it's not currently possible. At the moment, the cifs client
decides what sec= mode to use at mount time and that prevents the use
of mixed sec= modes on a single socket.

If someone wants to clean up that mess (and it really does need to be
cleaned up), then that would lay the groundwork for that ability.

> 
> Is there any problem with the version of cifs-utils or linux kernel 
> because i know that there is newer version ? 
> 

Not that I know of.

-- 
Jeff Layton <jlayton@xxxxxxxxxx>
--
To unsubscribe from this list: send the line "unsubscribe linux-cifs" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
[Linux USB Devel]     [Video for Linux]     [Linux Audio Users]     [Yosemite News]     [Linux Kernel]     [Linux SCSI]

  Powered by Linux