iX 6.5)

Chapter 7 95

Samba/iX Services

Samba/iX Conﬁguration File Options

Controlling User Access Rights

allow hosts Default: none

deny hosts These parameters allow users to deﬁne a set of client IP

addresses which will be granted access to service. If an

allow hosts option is present, only hosts matching the

pattern are allowed to access the service. If a deny

hosts option exists, only hosts not matching the pattern

will be granted access.

Example: allow hosts = 192.1.2.3

Default: none

valid users Default: none

invalid users If neither of these parameters are set, then any

authenticated user will be granted access to the service.

The valid users parameter may contain a

comma-delimited list of users who will be allowed to

access the service. The invalid users parameter may

contain a similar comma-delimited list of users who

will never be granted access to the service. These

parameters use MPE style user syntax (for example,

user.acct) to specify users. The password format used

when you log on from a PC client should be

userpassword, acctpassword.

Example: valid users = mgr.samba

Default: none

guest account The shares can be conﬁgured to accept connections

without a validated user ID and password, then you

can use the “guest account” parameter to assume the

guest logon identify for accessing ﬁles and printers.

Example: guest account = mgr.samba

Default: none

revalidate Forces the revalidation of password. When Samba/iX

successfully validates a clients password, it passes a

token back to client. This is used by the client to

connect to other shares. If revalidate=true, then

Samba/iX expects a valid username and password pair

again without just relying on the token. For example,

after connecting to “temp”, if the client tries to connect

to another share, Samba/iX revalidates the password.

Example: revalidate = yes

Default: no