I'm currently using samba in Domain security mode to provide right access to various shares for users with commonly named windoes and unix accounts. This works very well becasue there is no need to maintain a username mapping file. However for users who are on the windows domain but not on the unix box the map unknown user to guest does not work (presumably because the user is known!!) I know I can use the usermapping to map all known unix users to themselves and wildcard to nobody (for example) but think this could be done as an enhancement to remove maintanence of the username file. What I am suggesting is a global variable to say map known domail and unkown local to guest. Bill
Thanks for the feedback. Samba 2.2. will do this already by default. But it is actually a bug and not a feature. The supported solution is to use winbindd.