[Lilux-help] tricky SAMBA issue

Hi, I've got some trouble with a samba setup, there might not be a simple solution: network A firewalls network B fileserver1---------||----------client B | fileserver2 | client A So, there's a main network A with a large fileserver2 with decent storage. Most clients access the fileserver2, running W2K3, directly. fileserver2 is completely hidden from the outside, this will not change. We have a fileserver1, running an elderly RedHat with Samba, which until now mounted a share from fileserver2 using a "generic" user, and re-exported this via samba. fileserver1 is mapped to the outside and accessible from network B. Each client from network B has his/her own login to fileserver1. Now, thanks to new policy, there may not be a "generic" user anymore, or at least it won't get access to fileserver2. So what I'd like to do is have clients from network B be able to connect to fileserver1, and have that use that client's credentials to access fileserver2 "on the fly", i.e. mount the share from fileserver2 with that client's credentials, and re-export it to the client on network B. We're not talking Unix login, only pure samba - clients should not see anything other than their connection to smb://fileserver1/share with exactly one instance of providing login/password. Is such a thing possible, and if yes, how? If the answer is no, I guess there'll be a lot of unhappy users, myself included... Greets & TIA, Eric