1. 安装及修改配置
yum -y install samba
[root@centos7 bszhihui]# cat /etc/samba/smb.conf
# See smb.conf.example for a more detailed config file or
# read the smb.conf manpage.
# Run 'testparm' to verify the config is correct after
# you modified it.
[global]
workgroup = SAMBA
security = user
passdb backend = tdbsam
printing = cups
printcap name = cups
load printers = yes
cups options = raw
# username map = /etc/samba/smbusers
[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes
[printers]
comment = All Printers
path = /var/tmp
printable = Yes
create mask = 0600
browseable = No
[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = root
create mask = 0664
directory mask = 0775
#[bszhihui]
# comment = bszhihui
# path = /home/bszhihui
# writable = yes
# public = yes
# valid users = bszhihui
[bszhihui]
comment = bszhihui
path = /home/bszhihui
#read only =yes
public = no
valid users = bszhihui,wuhuamin,allqa,,webrd,apprd,toolrd,allpro,@samba
write list = bszhihui,wuhuamin,allqa,webrd,apprd,toolrd,allpro,@samba
2. 创建用户与配置文件中对应
依次创建用户
[root@centos7 ~]# useradd -d /data2/home/bszhihui/ -s /sbin/nologin wuhuamin
useradd:警告:此主目录已经存在。
不从 skel 目录里向其中复制任何文件。
[root@centos7 ~]# id wuhuamin
uid=1007(wuhuamin) gid=1007(wuhuamin) 组=1007(wuhuamin)
[root@centos7 ~]# useradd -d /data2/home/bszhihui/ -s /sbin/nologin allpro
useradd:警告:此主目录已经存在。
不从 skel 目录里向其中复制任何文件
创建用户组及组内加用户
[root@centos7 ~]# groupadd yunwei
[root@centos7 ~]# usermod -a -G yunwei wuhuamin
[root@centos7 ~]# usermod -a -G yunwei apprd
[root@centos7 ~]# id apprd
uid=1008(apprd) gid=1008(apprd) 组=1008(apprd),1009(yunwei)
[root@centos7 bszhihui]# grep devgroup /etc/group
devgroup:x:1015:webrd,apprd,toolrd
3. 将用户添加到samba用户数据库中并设置密码
smbpasswd -a bszhihui
或者
pdbedit -a -u apprd
查看当前samba所有用户
[root@centos7 ~]# pdbedit -L
toolrd:1016:
bszhihui:1000:
wuhuamin:1007:
allpro:1025:
allqa:1011:
webrd:1014:
apprd:1015:
文件划分各自的所有者及属组及读写权限
4. 关闭selinux
setenforce 0
vim /etc/selinux/config
# SELINUX=disabled
getsebool -a |grep samba
5. 关闭iptabales (如开启需添加相应规则)
iptables -I RH-Firewall-1-INPUT 5 -m state --state NEW -m tcp -p tcp --dport 139 -j ACCEPT
iptables -I RH-Firewall-1-INPUT 5 -m state --state NEW -m tcp -p tcp --dport 445 -j ACCEPT
iptables -I RH-Firewall-1-INPUT 5 -p udp -m udp --dport 137 -j ACCEPT
iptables -I RH-Firewall-1-INPUT 5 -p udp -m udp --dport 138-j ACCEPT
iptables-save
service iptables restart
6. 开启smb服务
systemctl start smb.service
systemctl start nmb.service
systemctl enable smb.service
systemctl enable nmb.service
windows连接.
运行处打开地址
或者直接从文件地址处打开