Solution confirmed once again. Stopped the SMB service, removed SMB from individual shares, started SMB service, then added the option back to the individual shares. I was testing primarily from a Windows 7 client where the local Windows login does not match the Open Directory login being used to access the SMB share on my Lion server.
Once I knew I had some working SMB shares, I tested some different username formats, since I originally suspected that I was using the wrong format:
These formats did not work:
OD_DOMAIN\ODUsername
OD_HOSTNAME\ODUsername
ODUsername@OD_DOMAIN
ODUsername@OD_IPADDRESS
ODUsername@OD_HOSTNAME
The only formats that worked for me were:
OD_IPADDRESS\ODUsername
ODUsername
I find it strange that plain old ODUsername works, as this should pass the local machine name by default, thus my input would be changed to LOCALHOSTNAME\ODUsername. My Windows hostname does not match up with OD, so this shouldn't technically work...
As a control in my testing, I did not change the SMB sharing option from some of my shares, then tested these after the smb restart. Directories where I toggled the status off and back on again were working, while these "control" directories produce the following error when access is attempted (I tested from a Win7 machine). This error is produced before the authentication dialogue is presented:
\\IPADDRESS\Share
A device attached to the system is not functioning.
However, I when I applied this fix to all directories, this error is gone. I just found it strange that it was not revealed until I restarted the SMB service.
I'll have to test further to find out whether this issue is resolved permanently, or if it will come back at some point.