I'm currently using samba in Domain security mode to provide right access to
various shares for users with commonly named windoes and unix accounts. This
works very well becasue there is no need to maintain a username mapping file.
However for users who are on the windows domain but not on the unix box the map
unknown user to guest does not work (presumably because the user is known!!) I
know I can use the usermapping to map all known unix users to themselves and
wildcard to nobody (for example) but think this could be done as an enhancement
to remove maintanence of the username file. What I am suggesting is a global
variable to say map known domail and unkown local to guest.
Thanks for the feedback.
Samba 2.2. will do this already by default. But it is actually
a bug and not a feature. The supported solution is to use winbindd.