In 12.0, there is now an option to disable Guest Access to the SMA Samba share (the share known as Client). This was used previously mostly for provisioning, but the recommended way to provision agents is with a GPO. However, not only can you disable Guest access, but you can also then selectively allow Users (who are listed in the SMA Users page) access, with a password.
First you disable Guest access. This disables all access to Client. Then, you have the options to Enable it for individual users. Because it uses a password, you have to do each user individually, one at a time. Since it does not use LDAP, each user must be set up by enabling the option and setting a password on that user.
- Disable Guest Access
- In an ORG, go to Settings > User
- Click on the name of a user you wish to have access to the client share
- Check the box labeled "Enable Access to Samba Share"
- Under Password and Confirm Password, fill in a password. This is not required to be their ldap password and will not change. This function does NOT use LDAP, only this static password. If the SMA is using LDAP for login, this will not effect UI login. However, if the SMA is using local login, this IS the local login password as well. You MUST put in a password for the user to access the cliet samba share.
- Click on save.
- In a client system, in Windows explorer, go to the name or IP of the SMA, such as //192.168.1.211. You will get a login box. Put in the name and password you created on the account.
- You may see both client and clientdrop. Clientdrop is still password protected by the password set for samba admin access, and cannot be accessed with a guest login.