| blob | 6e6b88c51901be114630fd1768e930c11948f4c0 |
1 <samba:parameter name="auth methods"
2 context="G"
3 type="list"
4 basic="1" advanced="1" wizard="1" developer="1"
5 xmlns:samba="http://www.samba.org/samba/DTD/samba-doc">
6 <description>
7 <para>
8 This option allows the administrator to chose what authentication methods <command
9 moreinfo="none">smbd</command> will use when authenticating a user. This option defaults to sensible values
10 based on <smbconfoption name="security"/>. This should be considered a developer option and used only in rare
11 circumstances. In the majority (if not all) of production servers, the default setting should be adequate.
12 </para>
14 <para>Each entry in the list attempts to authenticate the user in turn, until
15 the user authenticates. In practice only one method will ever actually
16 be able to complete the authentication.
17 </para>
19 <para>Possible options include <constant>guest</constant> (anonymous access),
20 <constant>sam</constant> (lookups in local list of accounts based on netbios
21 name or domain name), <constant>winbind</constant> (relay authentication requests
22 for remote users through winbindd), <constant>ntdomain</constant> (pre-winbindd
23 method of authentication for remote domain users; deprecated in favour of winbind method),
24 <constant>trustdomain</constant> (authenticate trusted users by contacting the
25 remote DC directly from smbd; deprecated in favour of winbind method).</para>
26 </description>
27 <value type="default"/>
28 <value type="example">guest sam winbind</value>
29 </samba:parameter>