Lifted from Genuix.org site. Settings for Solaris CIFS shares etc…
I’m only copying this here for now since much of the OpenSolaris documentation I’ve relied on over the years has become unfindable. All the Sun doc links in Google now point to a single Oracle Sun page that seems to get me nowhere… :(
Getting Started With the Solaris CIFS Service – Genunix
How to Join a Workgroup
Start the CIFS Service.
# svcadm enable -r smb/server
If the following warning is issued, you can ignore it:
svcadm: svc:/milestone/network depends on svc:/network/physical, which has multiple instancesJoin the workgroup.
# smbadm join -w workgroup-name
The default workgroup name is WORKGROUP. If you want to use the default, skip this step.
Establish passwords for CIFS workgroup users.
CIFS does not support UNIX or NIS style passwords. The SMB PAM module is required to generate CIFS style passwords. When the SMB PAM module is installed, the passwd command generates additional encrypted versions of each password that are suitable for use with CIFS.
Install the PAM module.
Add the following line to the end of the /etc/pam.conf file to support creation of an encrypted version of the user’s password for CIFS.
other password required pam_smb_passwd.so.1 nowarn
Note – After the PAM module is installed, the passwd command automatically generates CIFS-suitable passwords for new users. You must also run the passwd command to generate CIFS-style passwords for existing users.
Only a privileged user can modify the pam.conf file, for example:
# pfexec gedit /etc/pam.confCreate local user passwords.
# passwd username(Optional) Verify your Solaris CIFS service configuration.
Download the cifs-chkcfg script.
Run the cifs-chkcfg script.
# cifs-chkcfg
Note – The cifs-chkcfg script does not currently verify the Kerberos configuration.
How to Join an AD Domain
Before You BeginThis task describes how to join an AD domain and pertains to at least SXCE Build 82.
Determine your name mapping strategy and, if appropriate, create Solaris-to-Windows mapping rules. See “Creating Your Identity Mapping Strategy” in the Solaris CIFS Administration Guide.
Creating name-based mapping rules is optional and can be performed at any time. By default, identity mapping uses ephemeral mapping instead of name-based mapping.
Start the CIFS Service.
# svcadm enable -r smb/serverEnsure that system clocks on the domain controller and the Solaris system are synchronized.
For more information, see Step 3 of “How to Configure the Solaris CIFS Service in Domain Mode” in the Solaris CIFS Administration Guide.
Join the domain.
# smbadm join -u domain-user domain-name
You must specify a user that has appropriate access rights to perform this step.
Restart the CIFS Service.
# svcadm restart smb/server(Optional) Verify your Solaris CIFS service configuration.
Download the cifs-chkcfg script.
Run the cifs-chkcfg script.
# cifs-chkcfg
Note – The cifs-chkcfg script does not currently verify the Kerberos configuration.
How to Create a CIFS Share
Enable SMB sharing for the ZFS file system.
Enable SMB sharing for an existing ZFS file system.
# zfs set sharesmb=on fsname
For example, to enable SMB sharing for the ztank/myfs file system, type:
# zfs set sharesmb=on ztank/myfs
Note – The resource name for the share is automatically constructed by the zfs command when the share is created. The resource name is based on the dataset name, unless you specify a resource name. Any characters that are illegal for resource names are replaced by an underscore character (_).
To specify a resource name for the share, specify a name for the sharesmb property, sharesmb=name=resource-name.
For example, to specify a resource name of myfs for the ztank/myfs file system, type:
# zfs set sharesmb=name=myfs ztank/myfsCreate a new ZFS file system that enables SMB sharing.
When creating a ZFS file system to be used for SMB file sharing, set the casesensitivity option to mixed to permit a combination of case-sensitive and case-insensitive matching. Also, set the nbmand option to enforce mandatory cross-protocol share reservations and byte-range locking.
# zfs create -o casesensitivity=mixed -o nbmand=on -o sharesmb=on fsname
For example, to create a ZFS file system with SMB sharing and nbmand enabled for the ztank/yourfs file system, type:
# zfs create -o casesensitivity=mixed -o nbmand=on -o sharesmb=on ztank/yourfs
To specify a resource name for the share, specify a name for the sharesmb property, sharesmb=name=resource-name.
For example, to specify a resource name of yourfs for the ztank/yourfs file system, type:
# zfs create -o casesensitivity=mixed -o nbmand=on -o sharesmb=name=yourfs ztank/yourfsVerify how the new file system is shared.
# sharemgr show -vp
Now, you can access the share by connecting to \\solaris-hostname\share-name. For information about how to access CIFS shares from your client, refer to the client documentation.
January 8th, 2012
[…] after all the problems and wrangling trying to get CIFS shares to work reliably with OSX Lion (problems writing to CIFS shares, mainly error 50 etc…). I’ve installed napp-it on the […]