The Samba software version being used is samba-1.9.18p10. The product configuration uses the [HOMES] section to make home directories available. Configuration parameters are typically the default and tailored for use by Microsoft software.
The simba01 server uses the Homer account information, the servers for the UA home directories use a Microsoft Windows 2000 Domain "U" which verifies access using your UA unix password. This is the same password as you use for access to the Student or Faculty/Staff dial-in modem pool, or to login to the Libraries computer labs. Accounts with expired passwords or are otherwise disabled will not be permitted access.
When making a network mount, you specify a name for the share you wish to mount. The UNC syntax used for that name is \\server\share, where server is the name of the computer which can provide access to the files and share is a predefined name for a specific disk or directory of files. The terms "server" and "share" will be used later in this document.
There are two name service protocols used to locate the SMB servers. The DNS protocol and the WINS protocol. The WINS protocol when directed to the simba01 WINS server has a passthru to the DNS protocol to locate the WINS names as non-fully-qualified-names in the deskfile.washington.edu domain. Whichever protocol is used, the DNS service is used to locate the server. Once the server has been located, SMB initiates a connection.
In initiating the SMB connection, the client passes a packet containing both its name and the WINS name for the server. Samba has been modified to use the server name part is to determine the directory to be accessed.
The DNS daemon has a patch to provide special handling for name requests in the deskfile.washington.edu domain. Requests for names in that domain are resolved with the assistance of a child process running the /usr/local/etc/userdisk program. Userdisk uses the /usr/local/lib/pwsync datafiles to obtain the user home directory and uses the /tulsa/fstab.cfg and its own /usr/local/etc/userdisk.conf configuration files to determine which SMB server should be contacted for the home directory for the account. This DNS extension functions in a similar fashion as is done for the deskmail.washington.edu domain.
The share name is typically used for the account permissions and authentication. If another logon name is given for authentication, that will supplant the use of the share name for that purpose. Always specify the share name as the logon name you will be using for authentication.
In order for the server to obtain the account information, it uses the Net_Getpw() routine in the library /tulsa/lib/$OS/libgpw.a. That routine obtains the account information over the network from a daemon running on the master pwsync servers.
The Net_Getpw password server is a simple database implementation loaded into a generic TCP daemon which uses Jim Fox's Lightweight Secure Connection library for security.
The authentication is done using a Microsoft Windows 2000 Domain controller. The samba software is configured "security=server" to initiate logon authentication with the "u.washington.edu" aka "U" domain servers bear.u.washington.edu and cougar.u.washington.edu. If a workstation is already logged in with a "U" domain account, authentication will occur with no need to enter a password.
The patches to Samba are located in the /tulsa/src/samba-1.9.18p10/UW/source directory. The Makefiles in that directory contain the C load options required for AIX V4.2 and Digital Unix V4.0A.