2009/164 Support for guest access to CIFS/SMB shares
Alan.M.Wright
amw at Sun.COM
Tue Mar 10 02:08:01 PDT 2009
Joep Vesseur <Joep.Vesseur at Sun.COM> wrote:
> On 03/09/09 19:37, Jordan Brown wrote:
>> [...] Windows systems typically
>> use a predefined local account called Guest to represent guest
>> connections, although this account can be renamed. On Solaris,
>> the system administrator can define an idmap name-based rule to
>> map Guest to any local Solaris username, such as guest or
>> nobody. For example:
>>
>> # idmap add winname:Guest unixuser:guest
>
>
> What mapping occurs when no explicit name-based rule is created? i.e. what
> permissions are used by default for guest access?
> Or will guest access fail if no explicit name-based rule is created?
>
> Joep
An ephemeral ID will be allocated - exactly the same as for any
CIFS user for whom there is no applicable mapping. In terms of
file access control, it is no different from any other user account.
Alan
More information about the opensolaris-arc
mailing list