I'm trying to get a shared folder to work. Everyone should have read access (preferably not even a password prompt should pop up when connecting with Windows), but a few selected users should be able to log in and have write access too.
So far I have the following configuration:
[global]
server string = %h server
security = SHARE
obey pam restrictions = Yes
pam password change = Yes
unix password sync = Yes
syslog = 0
log file = /var/log/samba/log.%m
max log size = 1000
[shared]
comment = Shared
path = /shared
write list = @users
create mask = 0660
directory mask = 0771
guest ok = Yes
While this works nicely in allowing anonymous users to access the share (with the password prompt disabled), it will not allow me to connect with a authenticated user
smbclient //192.168.2.9/shared/
Enter cdecker's password:
tree connect failed: NT_STATUS_ACCESS_DENIED
I also tried server-level security, but that required all users to be authenticated and the password prompt would bug the hell out of my users.