Otdfbt

Multi tool use

Can an Iranian citizen enter the USA on a Dutch passport?

Is there precedent or are there procedures for a US president refusing to concede to an electoral defeat?

What is a common way to tell if an academic is "above average," or outstanding in their field? Is their h-index (Hirsh index) one of them?

Do Jedi mind tricks work on Ewoks?

How do I, as a DM, handle a party that decides to set up an ambush in a dungeon?

How do I download programs on Linux?

Transistor gain, what if there is not enough current?

Old story about a creature laying pyramid shaped eggs on Mars

What is monoid homomorphism exactly?

Can anyone identify this unknown 1988 PC card from The Palantir Corporation?

Can an earth elemental drag a tiny creature underground with Earth Glide?

What's the 2-minute timer on mobile Deutsche Bahn tickets?

Explaining intravenous drug abuse to a small child

Is throwing dice a stochastic or a deterministic process?

A 2-connected graph contains a path passing through all the odd degree vertices

What do you call a painting painted on a wall?

Debian 9 server no sshd in auth.log

Antivirus for Ubuntu 18.04

Collision domain question

Changing stroke width vertically but not horizontally in Inkscape

Dimmer switch not connected to ground

Referring to person by surname, keep or omit "von"?

What does the coin flipping before dying mean?

Why increasing of the temperature of the objects like wood, paper etc. doesn't fire them?

Is there a way to mount a Windows CIFS share and bypass the password prompt without a password file?

Mount CIFS share gives “mount error 127 = Key has expired”How to display windows group membership and Permission access in a CIFS mountMount cifs share anonymouslyUnable to mount XP share using fs-cifs from Linuxmount.cifs stopped workingUbuntu mount-point map Windows Share gets permissions denied errorMount Windows public share on Linux without username & passwordMounting a cifs share dir_mode and file_mode are being ignoredConverting a file server and Windows File Share to CIFS based share using Netapp FilerUbuntu map CIFS / SMB share using active domain credentials without password file

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;

0

I'm trying to mount a Windows cifs share (shared by Windows) onto a CentOS box, per user. Users are all in Active Directory.

So, every user who logs into their Linux box should be mounting the drive with their own credentials.

A solution I found was to mount using:

mount -t cifs //servername/mylogin /home/mylogin/windows -o uid=mylogin -o gid=groupname -o credentials=/home/mylogin/winpasswd

And for the /home/mylogin/winpasswd:

username=mylogin
domain=domainname
password=password_in_plain_text

However, I don't want to manually implement this for every Linux box and every user on every Linux box. Also, I don't want users having their password in plain text anywhere. Is there a way to mount a Windows cifs share and bypass the password prompt without a password file?

linux windows active-directory mount

share|improve this question

asked Feb 17 '16 at 17:20

CIACIA

1,36911025

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  My thoughts would be along the lines of Kerberos and automount : a Red Hat recipe appears here access.redhat.com/solutions/276503
  
  – HBruijn
  Feb 17 '16 at 17:27
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  That's where I went to as well, but I don't have a RedHat account to see the solution. If you could kindly post the details here, you would be a hero.
  
  – CIA
  Feb 17 '16 at 17:57
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Do you just want to give the password directly through the Mount command instead of saving it to a file?
  
  – Niklas S.
  Feb 17 '16 at 23:01
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  No. That's a step I want to cut out, because doing that multiple times for multiple shares is repetitive.
  
  – CIA
  Feb 18 '16 at 3:04
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Never test this myself, but I think there are a few things you need to do on Windows side: 1. permission the share for "everyone" access; 2. Disable the setting "Network access: Do not allow anonymous enumeration of SAM accounts and shares"; 3. Enable "Let Everyone permissions apply to anonymous users". But needless to say, this make your windows server extremely vulnerable.
  
  – strongline
  Feb 21 '16 at 1:01
  

  
  
  
  

 | 
show 1 more comment

0

I'm trying to mount a Windows cifs share (shared by Windows) onto a CentOS box, per user. Users are all in Active Directory.

So, every user who logs into their Linux box should be mounting the drive with their own credentials.

A solution I found was to mount using:

mount -t cifs //servername/mylogin /home/mylogin/windows -o uid=mylogin -o gid=groupname -o credentials=/home/mylogin/winpasswd

And for the /home/mylogin/winpasswd:

username=mylogin
domain=domainname
password=password_in_plain_text

However, I don't want to manually implement this for every Linux box and every user on every Linux box. Also, I don't want users having their password in plain text anywhere. Is there a way to mount a Windows cifs share and bypass the password prompt without a password file?

linux windows active-directory mount

share|improve this question

asked Feb 17 '16 at 17:20

CIACIA

1,36911025

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  My thoughts would be along the lines of Kerberos and automount : a Red Hat recipe appears here access.redhat.com/solutions/276503
  
  – HBruijn
  Feb 17 '16 at 17:27
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  That's where I went to as well, but I don't have a RedHat account to see the solution. If you could kindly post the details here, you would be a hero.
  
  – CIA
  Feb 17 '16 at 17:57
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Do you just want to give the password directly through the Mount command instead of saving it to a file?
  
  – Niklas S.
  Feb 17 '16 at 23:01
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  No. That's a step I want to cut out, because doing that multiple times for multiple shares is repetitive.
  
  – CIA
  Feb 18 '16 at 3:04
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Never test this myself, but I think there are a few things you need to do on Windows side: 1. permission the share for "everyone" access; 2. Disable the setting "Network access: Do not allow anonymous enumeration of SAM accounts and shares"; 3. Enable "Let Everyone permissions apply to anonymous users". But needless to say, this make your windows server extremely vulnerable.
  
  – strongline
  Feb 21 '16 at 1:01
  

  
  
  
  

 | 
show 1 more comment

I'm trying to mount a Windows cifs share (shared by Windows) onto a CentOS box, per user. Users are all in Active Directory.

So, every user who logs into their Linux box should be mounting the drive with their own credentials.

A solution I found was to mount using:

mount -t cifs //servername/mylogin /home/mylogin/windows -o uid=mylogin -o gid=groupname -o credentials=/home/mylogin/winpasswd

And for the /home/mylogin/winpasswd:

username=mylogin
domain=domainname
password=password_in_plain_text

However, I don't want to manually implement this for every Linux box and every user on every Linux box. Also, I don't want users having their password in plain text anywhere. Is there a way to mount a Windows cifs share and bypass the password prompt without a password file?

linux windows active-directory mount

share|improve this question

asked Feb 17 '16 at 17:20

CIACIA

1,36911025

mount -t cifs //servername/mylogin /home/mylogin/windows -o uid=mylogin -o gid=groupname -o credentials=/home/mylogin/winpasswd

username=mylogin
domain=domainname
password=password_in_plain_text

share|improve this question

asked Feb 17 '16 at 17:20

CIACIA

1,36911025

share|improve this question

asked Feb 17 '16 at 17:20

CIACIA

1,36911025

asked Feb 17 '16 at 17:20

CIACIA

1,36911025

asked Feb 17 '16 at 17:20

CIACIA

1,36911025

2 Answers
2

active

oldest

votes

0

Same as HBruijn I'll say that automount is the solution.

Check http://www.electromech.info/rhce-linux-howtos-electromech-ahemdabad-gujarat/38-automounting-home-directories-with-nis-and-nfs.html

It's not the best source or tutorial I've seen, but i hope this helps.

share|improve this answer

answered Mar 17 '16 at 9:41

runyoufreakrunyoufreak

1465

add a comment | 

0

If the users are in AD and the Windows box is also enrolled in the domain then I suggest adding CentOS boxes to the domain as well and employing kerberos/gssapi for single sign on.

sssd is capable of joining the AD and I am using such a setup myself.

share|improve this answer

answered Mar 25 at 17:59

TomekTomek

1,064166

add a comment | 

Your Answer

StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);

draft saved

draft discarded

Sign up or log in

StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);

Sign up using Google

Sign up using Facebook

Sign up using Email and Password

Post as a guest

Name

Email

Required, but never shown

StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f757889%2fis-there-a-way-to-mount-a-windows-cifs-share-and-bypass-the-password-prompt-with%23new-answer', 'question_page');

);

Post as a guest

Name

Email

Required, but never shown

0

Same as HBruijn I'll say that automount is the solution.

Check http://www.electromech.info/rhce-linux-howtos-electromech-ahemdabad-gujarat/38-automounting-home-directories-with-nis-and-nfs.html

It's not the best source or tutorial I've seen, but i hope this helps.

share|improve this answer

answered Mar 17 '16 at 9:41

runyoufreakrunyoufreak

1465

add a comment | 

0

Same as HBruijn I'll say that automount is the solution.

Check http://www.electromech.info/rhce-linux-howtos-electromech-ahemdabad-gujarat/38-automounting-home-directories-with-nis-and-nfs.html

It's not the best source or tutorial I've seen, but i hope this helps.

share|improve this answer

answered Mar 17 '16 at 9:41

runyoufreakrunyoufreak

1465

add a comment | 

Same as HBruijn I'll say that automount is the solution.

Check http://www.electromech.info/rhce-linux-howtos-electromech-ahemdabad-gujarat/38-automounting-home-directories-with-nis-and-nfs.html

It's not the best source or tutorial I've seen, but i hope this helps.

share|improve this answer

answered Mar 17 '16 at 9:41

runyoufreakrunyoufreak

1465

share|improve this answer

answered Mar 17 '16 at 9:41

runyoufreakrunyoufreak

1465

answered Mar 17 '16 at 9:41

runyoufreakrunyoufreak

1465

answered Mar 17 '16 at 9:41

runyoufreakrunyoufreak

1465

0

If the users are in AD and the Windows box is also enrolled in the domain then I suggest adding CentOS boxes to the domain as well and employing kerberos/gssapi for single sign on.

sssd is capable of joining the AD and I am using such a setup myself.

share|improve this answer

answered Mar 25 at 17:59

TomekTomek

1,064166

add a comment | 

0

If the users are in AD and the Windows box is also enrolled in the domain then I suggest adding CentOS boxes to the domain as well and employing kerberos/gssapi for single sign on.

sssd is capable of joining the AD and I am using such a setup myself.

share|improve this answer

answered Mar 25 at 17:59

TomekTomek

1,064166

add a comment | 

If the users are in AD and the Windows box is also enrolled in the domain then I suggest adding CentOS boxes to the domain as well and employing kerberos/gssapi for single sign on.

sssd is capable of joining the AD and I am using such a setup myself.

share|improve this answer

answered Mar 25 at 17:59

TomekTomek

1,064166

share|improve this answer

answered Mar 25 at 17:59

TomekTomek

1,064166

answered Mar 25 at 17:59

TomekTomek

1,064166

answered Mar 25 at 17:59

TomekTomek

1,064166