cancel
Showing results for 
Search instead for 
Did you mean: 

CIFS/Passthru Authentication on a UBUNTU box?

mattyc
Champ in-the-making
Champ in-the-making
Is the below all I need to make CIFS work?  When using just ldap-ad everything authenticates fine and works, but its to my understanding that you can't utilize CIFS with ldap-ad, so I've tried to configure passsthru with the below configurations.  I am able to authenticate users with passthru, but if i try to do \\Alfresco Server IP\alfresco, it prompts for credentials and then doesn't except any credentials for validation.  I believe part of the issue is because I have to get the CIFS ports opened on the firewall, but as far as configuration, does this look right(minus the LDAP stuff, because that works)?

Alfresco 3.2 Community
Alfresco-Global.properties

#authentication.chain=passthru1:passthru,ldap1:ldap-ad
#cifs.domain=OUR DOMAIN NAME

#ntlm.authentication.sso.enabled=false
#ntlm.authentication.authenticateCIFS=false
#passthru.authentication.sso.enabled=false
#passthru.authentication.allowGuestLogin=true

#passthru.authentication.servers=DOMAIN\\DNS SERVER IP,DOMAIN\\DNS SERVER IP2
#passthru.authentication.domain=DOMAIN NAME
#passthru.authentication.useLocalServer=false
#passthru.authentication.defaultAdministratorUserNames=administrators names
#passthru.authentication.connectTimeout=5000
#passthru.authentication.offlineCheckInterval=300
#passthru.authentication.protocolOrder=TCPIP,NETBIOS
#passthru.authentication.authenticateCIFS=true
#passthru.authentication.authenticateFTP=true

ldap.authentication.userNameFormat=%s@domain
ldap.authentication.java.naming.provider.url=ldap://DNS IP:389
ldap.authentication.defaultAdministratorUserNames=administrators names
ldap.synchronization.active = true
ldap.synchronization.java.naming.security.principal=Username
ldap.synchronization.java.naming.security.credentials=Password
ldap.synchronization.groupSearchBase=ou\=GROUPNAME,ou\=OUNAME,dc=TCMC,dc=LOCAL
ldap.synchronization.userSearchBase=ou\=OUNAME,ou\=OUNAME,dc=TCMC,dc=LOCAL
synchronization.synchronizeChangesOnly=true
synchronization.syncOnStartup=true

#cifs.enabled=true
#cifs.Server.Name=alfresco
#cifs.ipv6.enabled=false
#cifs.tcpipSMB.port=1445
#cifs.netBIOSSMB.namePort=1137
#cifs.netBIOSSMB.datagramPort=1138
#cifs.netBIOSSMB.sessionPort=1139
3 REPLIES 3

mattyc
Champ in-the-making
Champ in-the-making
Pass-thru authentication is working, however i still cannot seem to get CIFS up and running

I have the below set up for CIFS:


cifs.enabled=true
cifs.localname=${localname}
cifs.hostannounce=true
cifs.ipv6.enabled=false
cifs.broadcast=255.255.255.0
cifs.tcpipSMB.port=1445
cifs.netBIOSSMB.namePort=1137
cifs.netBIOSSMB.datagramPort=1138
cifs.netBIOSSMB.sessionPort=1139

I've also set up IPTABLES on my Ubuntu Box as below

        echo 1 > /proc/sys/net/ipv4/ip_forward
        /sbin/modprobe iptable_nat
        /sbin/iptables -t nat -F
        /sbin/iptables -P INPUT ACCEPT
        /sbin/iptables -P FORWARD ACCEPT
        /sbin/iptables -P OUTPUT ACCEPT
        /sbin/iptables -t nat -A PREROUTING -p tcp –dport 445 -j REDIRECT –to-ports 1445
        /sbin/iptables -t nat -A PREROUTING -p tcp –dport 139 -j REDIRECT –to-ports 1139
        /sbin/iptables -t nat -A PREROUTING -p udp –dport 137 -j REDIRECT –to-ports 1137
        /sbin/iptables -t nat -A PREROUTING -p udp –dport 138 -j REDIRECT –to-ports 1138

mattyc
Champ in-the-making
Champ in-the-making
Any ideas as to why CIFS isn't working?  Passthru seems to be working fine and I added the IPTABLE rules…but when trying to map a network drive on a windows xp box using \\IP of Alfresco\alfresco\username it doesn't show anything.  Any help would be appreciated!  Thanks!!

Matt

durrell
Champ in-the-making
Champ in-the-making
Is the broadcast setting of 255.255.255.0 correct? Assuming everything else is correct and you're not seeing it, that could be your problem.