Linux and Unix smbclient command
Quick links
About smbclient
Syntax
Examples
Related commands
Linux and Unix main page
An ftp-like client to access SMB/CIFS resources on servers.
smbclient [-b <buffer size>] [-d debuglevel] [-L <netbios name>] [-U username] [-I destinationIP] [-M <netbios name>] [-m maxpro-
tocol] [-A authfile] [-N] [-i scope] [-O <socket options>] [-p port] [-R <name resolve order>] [-s <smb config file>] [-k] [-P] [-c <command>]
smbclient {servicename} [password] [-b <buffer size>] [-d debuglevel] [-D Directory] [-U username] [-W workgroup] [-M <netbios
name>] [-m maxprotocol] [-A authfile] [-N] [-l logdir] [-I destinationIP] [-E] [-c <command string>] [-i scope] [-O <socket options>] [-p port] [-R <name resolve order>] [-s <smb config file>] [-T<c|x>IXFqgbNan] [-k]
| servicename | servicename is the name of the service you want to use on the server. A service name takes the form //server/service where server is the NetBIOS name of the SMB/CIFS server offering the desired service and service is the name of the service offered. Thus to connect to the service "printer" on the SMB/CIFS server "smbserver", you would use the servicename //smbserver/printer Note that the server name required is NOT necessarily the IP (DNS) host name of the server ! The name required is a NetBIOS server name, which may or may not be the same as the IP hostname of the machine running the server. The server name is looked up according to either the -R parameter to smbclient or using the name resolve order parameter in the smb.conf(5) file, allowing an administrator to change the order and methods by which server names are looked up. |
| password | The password required to access the specified service on the specified server. If this parameter is supplied, the -N option (suppress password prompt) is assumed. There is no default password. If no password is supplied on the command line (either by using this parameter or adding a password to the -U option (see below)) and the -N option is not specified, the client will prompt for a password, even if the desired service does not require one. (If no password is required, press ENTER to provide a null password.) Note: Some servers (including OS/2 and Windows for Workgroups) insist on an uppercase password. Lowercase or mixed case passwords may be rejected by these servers. Be cautious about including passwords in scripts. |
| -R <name resolve order> | This option is used by the programs in the Samba suite to determine what naming services and in what order to resolve host names to IP addresses. The option takes a space-separated string of different name resolution options. The options are :"lmhosts", "host", "wins" and "bcast". They cause names to be resolved as follows: • • • • If this parameter is not set then the name resolve order defined in the smb.conf file parameter (name resolve order) will be used. The default order is lmhosts, host, wins, bcast and without this parameter or any entry in the name resolve order parameter of the smb.conf file the name resolution methods will be attempted in this order. |
| -M NetBIOS name | This options allows you to send messages, using the "WinPopup" protocol, to another computer. Once a connection is established you then type your message, pressing ^D (control-D) to end. If the receiving computer is running WinPopup the user will receive the message and probably a beep. If they are not running WinPopup the message will be lost, and no error message will occur. The message is also automatically truncated if the message is over 1600 bytes, as this is the limit of the protocol. One useful trick is to cat the message through smbclient. For example: cat mymessage.txt | smbclient -M FRED You may also find the -U and -I options useful, as they allow you to control the FROM and TO parts of the message. See the message command parameter in the smb.conf for a description of how to handle incoming WinPopup messages in Samba. Note: Copy WinPopup into the startup group on your WfWg PCs if you want them to always be able to receive messages. |
| -p port | This number is the TCP port number that will be used when making connections to the server. The standard (well-known) TCP port number for an SMB/CIFS server is 139, which is the default. |
| -P | Make queries to the external server using the machine account of the local server. |
| -I IP-address | IP address is the address of the server to connect to. It should be specified in standard "a.b.c.d" notation. Normally the client would attempt to locate a named SMB/CIFS server by looking it up via the NetBIOS name resolution mechanism described above in the name resolve order parameter above. Using this parameter will force the client to assume that the server is on the machine with the specified IP address and the NetBIOS name component of the resource being connected to will be ignored. There is no default for this parameter. If not supplied, it will be determined automatically by the client as described above. |
| -E | This parameter causes the client to write messages to the standard error stream (stderr) rather than to the standard output stream. By default, the client writes messages to standard output - typically the user's tty. |
| -L | This option allows you to look at what services are available on a server. You use it as smbclient -L host and a list should appear. The -I option may be useful if your NetBIOS names don't match your TCP/IP DNS host names or if you are trying to reach a host on another network. |
| -t terminal code | This option tells smbclient how to interpret filenames coming from the remote server. Usually Asian language multibyte UNIX implementations use different character sets than SMB/CIFS servers (EUC instead of SJIS for example). Setting this parameter will let smbclient convert between the UNIX filenames and the SMB filenames correctly. This option has not been seriously tested and may have some problems. The terminal codes include CWsjis, CWeuc, CWjis7, CWjis8, CWjunet, CWhex, CWcap. This is not a complete list, check the Samba source code for the complete list. |
| -b buffersize | This option changes the transmit/send buffer size when getting or putting a file from/to the server. The default is 65520 bytes. Setting this value smaller (to 1200 bytes) has been observed to speed up file transfers to and from a Win9x server. |
| -V | Prints the program version number. |
| -s <configuration file> | The file specified contains the configuration details required by the server. The information in this file includes server-specific information such as what printcap file to use, as well as descriptions of all the services that the server is to provide. See smb.conf for more information. The default configuration file name is determined at compile time. |
| -d|--debuglevel=level | level is an integer from 0 to 10. The default value if this parameter is not specified is zero. The higher this value, the more detail will be logged to the log files about the activities of the server. At level 0, only critical errors and serious warnings will be logged. Level 1 is a reasonable level for day-to-day running - it generates a small amount of information about operations carried out. Levels above 1 will generate considerable amounts of log data, and should only be used when investigating a problem. Levels above 3 are designed for use only by developers and generate HUGE amounts of log data, most of which is extremely cryptic. Note that specifying this parameter here will override the parameter in the smb.conf file. |
| -l|--logfile=logdirectory | Base directory name for log/debug files. The extension ".progname" will be appended (e.g. log.smbclient, log.smbd, etc...). The log file is never removed by the client. |
| -N | If specified, this parameter suppresses the normal password prompt from the client to the user. This is useful when accessing a service that does not require a password. Unless a password is specified on the command line or this parameter is specified, the client will request a password. |
| -k | Try to authenticate with kerberos. Only useful in an Active Directory environment. |
| -A|--authentication-file=filename | This option allows you to specify a file from which to read the username and password used in the connection. The format of the file is username = <value> password = <value> domain = <value> Make certain that the permissions on the file restrict access from unwanted users. |
| -U|--user=username[%password] | Sets the SMB username or username and password. If %password is not specified, the user will be prompted. The client will first check the USER environment variable, then the LOGNAME variable and if either exists, the string is uppercased. If these environmental variables are not found, the username GUEST is used. A third option is to use a credentials file which contains the plaintext of the username and password. This option is mainly provided for scripts where the admin does not wish to pass the credentials on the command line or via environment variables. If this method is used, make certain that the permissions on the file restrict access from unwanted users. See the -A for more details. Be cautious about including passwords in scripts. Also, on many systems the command line of a running process may be seen via the ps command. To be safe always allow rpcclient to prompt for a password and type it in directly. |
| -n <primary NetBIOS name> | This option allows you to override the NetBIOS name that Samba uses for itself. This is identical to setting the parameter in the smb.conf file. However, a command line setting will take precedence over settings in smb.conf. |
| -i <scope> | This specifies a NetBIOS scope that nmblookup will use to communicate with when generating NetBIOS names. For details on the use of NetBIOS scopes, see rfc1001.txt and rfc1002.txt. NetBIOS scopes are very rarely used, only set this parameter if you are the system administrator in charge of all the NetBIOS systems you communicate with. |
| -W|--workgroup=domain | Set the SMB domain of the username. This overrides the default domain which is the domain defined in smb.conf. If the domain specified is the same as the servers NetBIOS name, it causes the client to log on using the servers local SAM (as opposed to the Domain SAM). |
| -O socket options | TCP socket options to set on the client socket. See the socket options parameter in the smb.conf manual page for the list of valid options. |
| -T tar options | smbclient may be used to create tar compatible backups of all the files on an SMB/CIFS share. The secondary tar flags that can be given to this option are : • • • • • • • • • • • Tar Long File Names smbclient's tar option now supports long file names both on backup and restore. However, the full path name of the file must be less than 1024 bytes. Also, when a tar archive is created, smbclient's tar option places all files in the archive with relative names, not absolute names. Tar Filenames All file names can be given as DOS path names (with '\' as the component separator) or as UNIX path names (with '/' as the component separator). Examples Restore from tar file backup.tar into myshare on mypc (no password on share). smbclient //mypc/yshare "" -N -Tx backup.tar Restore everything except users/docs smbclient //mypc/myshare "" -N -TXx backup.tar users/docs Create a tar file of the files beneath smbclient //mypc/myshare "" -N -Tc backup.tar users/docs Create the same tar file as above, but now use a DOS path name. smbclient //mypc/myshare "" -N -tc backup.tar users\docs Create a tar file of the files listed in the file tarlist. smbclient //mypc/myshare "" -N -TcF backup.tar tarlist Create a tar file of all the files and directories in the share. smbclient //mypc/myshare "" -N -Tc backup.tar * |
| -D initial directory | Change to initial directory before starting. Probably only of any use with the tar -T option. |
| -c command string | command string is a semicolon-separated list of commands to be executed instead of prompting from stdin. -N is implied by -c. This is particularly useful in scripts and for printing stdin to the server, e.g. -c 'print -'. |
smbclient -L host
List available shares on the <host>, where host is the name of the computer you're wanting to list the shares on. Using this command would display information similar to the below output.
Domain=[WORKGROUP] OS=[Windows NT 3.51] Server=[NT LAN Manager 3.51] Server=[HOPE] User=[] Workgroup=[WORKGROUP] Domain=[] Sharename Type Comment --------- ---- ------- ADMIN$ Disk Remote Admin C$ Disk Default share IPC$ IPC Remote IPC HopePrn Printer OReilly CH Disk CHWeb
smbclient \\\\hope\\ch password
Running the above command would use the smbclient to connect to the CH share on the HOPE computer.
smb: \>
If successfully connected to the share you should receive a prompt similar to the above example. Using the smbclient is almost identical to how you navigate and use many command line FTP clients. If at any time you need help or wish to see the available commands type a question mark ( ? ) and press enter.
Note: when typing any backward slash because it's treated as an escape make sure it's followed by another backward slash. For example, if you were wanting to type cd\windows at the SMB prompt it would be cd\\windows.