At IU, how do I access the SDA via Samba?

You can use the Samba protocol to access Indiana University's Scholarly Data Archive (SDA) from Windows, OS X, and Linux workstations. Connecting via Samba gives you read-only access to your SDA account and any shared files you have permission to access. An IU VPN connection is required to access the SDA from off campus (i.e., outside the IU network).

Note:
Samba connections to the SDA are read-only to prevent potential file corruptions caused by real-time editing on the SDA's tape-based back end. To transfer files to the SDA, use SFTP/SCP, HSI/HTAR, or the SDA web interface.

On this page:


Windows

Note:
If your Windows workstation is not joined to the IU ADS domain, you may need to run a tool that disables LM/NTLMv1 to access the SDA via Samba.

To use Samba to map a drive to your (personal or group) account or a shared directory on the SDA:

  1. In Windows 8.x, press Win-e, and then in the left column of the resulting window, right-click Computer or This PC.
  2. In Windows 7 and earlier, from the Start menu, right-click Computer.

  3. Select Map Network Drive.
  4. In the "Path:" or "Folder:" field, enter the path for the SDA account (replace username with the account username or one of the share names listed below in the Accessing a shared directory section):
  5.   \\smb.sdarchive.iu.edu\username
    
  6. When prompted, enter the account username, prepended with ads\ (e.g., ads\username), and the corresponding passphrase.

The SDA will be mapped as a drive on your workstation, providing read-only access to the files and folders you have permission to access.

Note:
In accordance with standards for access control mandated by the HIPAA Security Rule, you are not permitted to access data containing protected health information (PHI) using a group (or departmental) account. To ensure accountability and permit access to authorized users only, IU researchers must use their personal IU username and passphrase for all work involving PHI.

OS X

To use Samba to mount your (personal or group) account or a shared directory on the SDA:

  1. In the Finder, from the Go menu, select Connect to Server.
  2. In the Connect to Server window, in the "Server Address:" field, enter the path for the SDA account (replace username with the account username or one of the share names listed below in the Accessing a shared directory section):
  3.   smb://smb.sdarchive.iu.edu/sda_account
    
  4. Click Connect.
  5. When prompted, enter the account username and passphrase, and then click Connect.

The SDA will be mounted on your workstation, providing read-only access to the files and folders you have permission to access.

Note:
In accordance with standards for access control mandated by the HIPAA Security Rule, you are not permitted to access data containing protected health information (PHI) using a group (or departmental) account. To ensure accountability and permit access to authorized users only, IU researchers must use their personal IU username and passphrase for all work involving PHI.

Linux

To use Samba to mount your (personal or group) account or a shared directory on the SDA:

  1. Create an empty mountpoint directory for the SDA account:
    • If you are logged into your workstation as root, on the command line, enter the following, replacing sda_account with the appropriate SDA account username or share name (for share name information, see the Accessing a shared directory section below):
    •   mkdir /sda_account
      
    • If you are logged into your workstations as a non-root user , on the command line, enter the following, replacing sda_account with the appropriate SDA account username or share name (for share name information, see the Accessing a shared directory section below):
    •   mkdir ~/sda_account
      
  2. Mount the SDA account. To so, on the command line, enter the following, replacing sda_account and sda_user with the appropriate SDA account username, and local_user with the local username that should be permitted to access the SDA:
  3.   mount.cifs //smb.sdarchive.iu.edu/sda_account /sda -o user=sda_user,uid=local_user,sec=ntlmv2,domain=ads
    

    Alternatively, in the above example:

    • If you are mounting a shared directory:
      • Replace sda_account with the appropriate share name.
      • Replace sda_user with the username of the SDA account that has permission to access the shared directory.
    • If the local username is identical to the SDA account username, you can omit uid=localuserid .
    • To map a group SDA account to a local group username, use gid=local_user instead of uid=local_user.
    • In some cases under Red Hat Enterprise Linux 6 (RHEL 6), the sec=ntmlv2 option does not work ; try sec=ntlmssp instead.
  4. When prompted, enter the appropriate SDA account passphrase.

When you are finished, unmount the SDA account:

  • As root, enter:
  •   unmount.cifs /sda_account
    
  • As a non-root user, enter:
  •   unmount.cifs ~/sda_account
    
Note:
In accordance with standards for access control mandated by the HIPAA Security Rule, you are not permitted to access data containing protected health information (PHI) using a group (or departmental) account. To ensure accountability and permit access to authorized users only, IU researchers must use their personal IU username and passphrase for all work involving PHI.

Accessing a shared directory

To access a directory that another user (or group) is sharing with you:

  1. Use one of the following share names to replace sda_account in the above instructions for Windows, OS X, or Linux:
  2. Share name Description
    hpss-home Maps to the top-level directory in cos1, the class of service (COS) for small files (up to 4 MB)
    hpss-home-medium Maps to the top-level directory in cos2, the COS for medium files (from 4 MB to 64 MB)
    hpss-home-large Maps to the top-level directory in cos3, the COS for large files (from 64 MB to 1 TB)
  3. From the top-level directory, navigate to the SDA account(s) you have permission to access. SDA accounts are stored off the top-level directory based on the first two characters in their usernames; for example, from the top level, to navigate to the account for username owkenobi, on the command line, enter:
  4.   cd o/w/owkenobi
    
Note:
You cannot view files in an account belonging to another user (or group) unless the owner of the account sets permissions that grant you access. For information about setting permissions in shared directories, see At IU, how do I use ACLs to share my SDA data with other users?

This is document auxm in the Knowledge Base.
Last modified on 2017-05-26 15:27:10.

  • Fill out this form to submit your issue to the UITS Support Center.
  • Please note that you must be affiliated with Indiana University to receive support.
  • All fields are required.

Please provide your IU email address. If you currently have a problem receiving email at your IU account, enter an alternate email address.

  • Fill out this form to submit your comment to the IU Knowledge Base.
  • If you are affiliated with Indiana University and need help with a computing problem, please use the I need help with a computing problem section above, or contact your campus Support Center.

Please provide your IU email address. If you currently have a problem receiving email at your IU account, enter an alternate email address.