Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
redhat:samba-server-redhat:start [2017/07/04 11:46] – created michael | redhat:samba-server-redhat:start [2019/03/08 11:08] (current) – [Installation des Samba-Servers] michael | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | https://www.tecmint.com/install-samba4-on-centos-7-for-file-sharing-on-windows/ | + | ====== SMB - Samba Server mit RHEL / CentOS 7 ====== |
+ | '' | ||
+ | |||
+ | {{: | ||
+ | |||
+ | ---- | ||
+ | |||
+ | ===== Übersicht über die geplante Konfiguration ===== | ||
+ | Im ersten Schritt werden zuerst die vorausgesetzten Vorbereitungen zur späteren Konfiguration der SMB-Shares durchgeführt. Folgende Vorgaben gelten für die bevorstehende Konfiguration. | ||
+ | |||
+ | <WRAP left round box 80%> | ||
+ | ==== Vorgaben ==== | ||
+ | '' | ||
+ | |||
+ | {{ : | ||
+ | </WRAP> | ||
+ | |||
+ | <WRAP clear/> | ||
+ | |||
+ | |||
+ | |||
+ | ===== Installation des Samba-Servers ===== | ||
+ | Zu Beginn, wird erst einmal der Server aktualisiert, | ||
+ | |||
+ | <WRAP center box 100%> | ||
+ | - Aktualisierung des Systems und Installation der Samba-Packets: | ||
+ | # yum install | ||
+ | </ | ||
+ | | ||
+ | # firewall-cmd --reload | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | |||
+ | |||
+ | ==== Erstellen der Gruppen und User ==== | ||
+ | <wrap em> | ||
+ | |||
+ | <WRAP center box 100%> | ||
+ | **Gruppen hinzufügen: | ||
+ | < | ||
+ | # groupadd smbusers && groupadd beziehung && groupadd ion && groupadd hunde | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | |||
+ | <WRAP center box 100%> | ||
+ | **Erstellen der lokalen User :** | ||
+ | |||
+ | Entweder, werden nun alle User einzeln wie im ersten Beispiel hinzugefügt; | ||
+ | |||
+ | < | ||
+ | # useradd michael | ||
+ | # useradd jennifer | ||
+ | ... | ||
+ | </ | ||
+ | |||
+ | <wrap em> | ||
+ | |||
+ | < | ||
+ | # for user in michael jennifer simon bambo svenja; do sudo useradd $user; done | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | |||
+ | |||
+ | <WRAP center box 100%> | ||
+ | **Zuweisen der User in die User-spezifischen Gruppen: | ||
+ | |||
+ | '' | ||
+ | < | ||
+ | # usermod -a -G smbusers, | ||
+ | # usermod -a -G smbusers, | ||
+ | # usermod -a -G smbusers, | ||
+ | # usermod -a -G smbusers, | ||
+ | # usermod -a -G smbusers, | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | <WRAP center box 100%> | ||
+ | **Setzen der Default Passwörter, | ||
+ | < | ||
+ | # echo -e " | ||
+ | # echo -e " | ||
+ | # echo -e " | ||
+ | # echo -e " | ||
+ | # echo -e " | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | |||
+ | ==== Erstellen und berechtigen der Verzeichnisse ==== | ||
+ | Im nächsten Schritt, werden die benötigten Verzeichnisse, | ||
+ | |||
+ | <WRAP center box 100%> | ||
+ | **Erstellen der Share-Ordner: | ||
+ | |||
+ | < | ||
+ | # mkdir -p / | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | <WRAP center box 100%> | ||
+ | **Setzen der korrekten SELinux Rules:** | ||
+ | |||
+ | < | ||
+ | # setsebool -P samba_export_all_ro=1 samba_export_all_rw=1 | ||
+ | # getsebool –a | grep samba_export | ||
+ | # semanage fcontext –at samba_share_t "/ | ||
+ | |||
+ | # restorecon /finance | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | <WRAP center box 100%> | ||
+ | **Share-Ordner für Gruppen berechtigen: | ||
+ | |||
+ | < | ||
+ | # cd / | ||
+ | # chgrp beziehung ferien_fotos && chgrp ion daten_simon && chgrp hunde fressnapf | ||
+ | |||
+ | # chmod -R 0770 / | ||
+ | # chmod 775 / | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | |||
+ | |||
+ | ===== Konfiguration des Samba-Dienstes ===== | ||
+ | Nun da die Vorbereitungen für die Shares abgeschlossen sind, kann mir der Konfiguration des Samba Servers begonnenen werden. | ||
+ | |||
+ | ==== Server Konfiguration ==== | ||
+ | |||
+ | Beim Samba-Server ist die Konfiguration schnell durchgeführt. Hier muss man nämlich lediglich die Hauptkonfigurations-Datei ''/ | ||
+ | |||
+ | < | ||
+ | # vim / | ||
+ | </ | ||
+ | |||
+ | <sxh bash; first-line: 1> | ||
+ | # Samba Konfiguration – blackgate.lan | ||
+ | [global] | ||
+ | |||
+ | | ||
+ | unix charset = UTF-8 | ||
+ | | ||
+ | dns proxy = no | ||
+ | | ||
+ | max log size = 1000 | ||
+ | | ||
+ | | ||
+ | |||
+ | | ||
+ | obey pam restrictions = yes | ||
+ | unix password sync = no | ||
+ | pam password change = no | ||
+ | |||
+ | map to guest = bad user | ||
+ | |||
+ | # | ||
+ | |||
+ | [public] | ||
+ | | ||
+ | | ||
+ | path = / | ||
+ | | ||
+ | | ||
+ | | ||
+ | share modes = yes | ||
+ | | ||
+ | valid users = @smbusers | ||
+ | force group = smbusers | ||
+ | |||
+ | [ferien_fotos] | ||
+ | | ||
+ | | ||
+ | path = / | ||
+ | | ||
+ | | ||
+ | | ||
+ | share modes = yes | ||
+ | | ||
+ | valid users = @beziehung | ||
+ | force group = beziehung | ||
+ | |||
+ | [daten_simon] | ||
+ | | ||
+ | | ||
+ | path = / | ||
+ | | ||
+ | | ||
+ | | ||
+ | share modes = yes | ||
+ | | ||
+ | valid users = @ion | ||
+ | force group = ion | ||
+ | |||
+ | [hundenapf] | ||
+ | | ||
+ | | ||
+ | path = / | ||
+ | | ||
+ | | ||
+ | | ||
+ | share modes = yes | ||
+ | | ||
+ | valid users = @hunde | ||
+ | force group = hunde | ||
+ | |||
+ | </ | ||
+ | |||
+ | <WRAP center box 100%> | ||
+ | ==== Erstellen der Samba-Passwörter für die lokalen Samba-User: ==== | ||
+ | Um nun auf die Shares per Passwort Authentifizierung darauf zuzugreifen, | ||
+ | |||
+ | < | ||
+ | # smbpasswd -a michael | ||
+ | |||
+ | # echo -e " | ||
+ | # echo -e " | ||
+ | |||
+ | # echo -e " | ||
+ | # echo -e " | ||
+ | # echo -e " | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | '' | ||
+ | |||
+ | < | ||
+ | # systemctl enable smb.service nmb.service | ||
+ | |||
+ | # systemctl start smb.service | ||
+ | # systemctl start nmb.service | ||
+ | </ | ||
+ | |||
+ | |||
+ | <wrap em> |