Fichier de conf samba-3.6.6 avec auth local via tdbsam sur jessie.

vm6:/opt# cat /etc/samba/smb.conf
#
#======================= Global Settings =======================

[global]


   workgroup = WORKGROUP
   server string = %h server
#   wins support = no
;   wins server = w.x.y.z
   dns proxy = no
;   name resolve order = lmhosts host wins bcast

#### Networking ####

;   interfaces = 127.0.0.0/8 eth0
;   bind interfaces only = yes



#### Debugging/Accounting ####

   log file = /var/log/samba/log.%m
   max log size = 1000
#   syslog only = no
   syslog = 0
   log level = 4
   panic action = /usr/share/samba/panic-action %d


####### Authentication #######

security = user
encrypt passwords = true
passdb backend = tdbsam
obey pam restrictions = yes

unix password sync = yes
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
pam password change = yes
map to guest = bad user

########## Domains ###########

domain logons = yes
;   logon path = \\%N\profiles\%U
#   logon path = \\%N\%U\profile
;   logon drive = H:
#   logon home = \\%N\%U
;   logon script = logon.cmd
; add user script = /usr/sbin/adduser --quiet --disabled-password --gecos "" %u
; add machine script  = /usr/sbin/useradd -g machines -c "%u machine account" -d /var/lib/samba -s /bin/false %u
; add group script = /usr/sbin/addgroup --force-badname %g

########## Printing ##########

load printers = no
;   printing = bsd
printcap name = /dev/null
;   printing = cups
;   printcap name = cups

############ Misc ############

socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
;   message command = /bin/sh -c '/usr/bin/linpopup "%f" "%m" %s; rm %s' &
#   domain master = auto
;   idmap uid = 10000-20000
;   idmap gid = 10000-20000
;   template shell = /bin/bash

;   winbind enum groups = yes
;   winbind enum users = yes
;   usershare max shares = 100
   usershare allow guests = yes

#======================= Share Definitions =======================

#[homes]
#   comment = Home Directories
#   browseable = no
#   writable = yes
#   read only = no

[sig]
    comment = testsig
    path = /opt/smb
        read only = no
    writable = yes
    valid users = @sigusers
   create mask = 0770
   directory mask = 2770

   #valid users = %S



;[netlogon]
;   comment = Network Logon Service
;   path = /home/samba/netlogon
;   guest ok = yes
;   read only = yes

;[profiles]
;   comment = Users profiles
;   path = /home/samba/profiles
;   guest ok = no
;   browseable = no
;   create mask = 0600
;   directory mask = 0700




Droits des répertoires

vm6:/opt# ll
total 12
drwxr-xr-x  3 root root     4096 Mar 14 12:54 .
drwxr-xr-x 22 root root     4096 Oct 28  2013 ..
drwxr-xr-x  3 root sigusers 4096 Mar 14 12:59 smb

vm6:/opt# ll smb/
total 12
drwxr-xr-x 3 root sigusers 4096 Mar 14 12:59 .
drwxr-xr-x 3 root root     4096 Mar 14 12:54 ..
drwxrws--- 2 root sigusers 4096 Mar 14 13:25 datas