From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org)
	by nuthatch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-user+bounces-54629-garchives=archives.gentoo.org@gentoo.org>)
	id 1GjPr0-0001C9-8f
	for garchives@archives.gentoo.org; Mon, 13 Nov 2006 00:39:14 +0000
Received: from robin.gentoo.org (localhost [127.0.0.1])
	by robin.gentoo.org (8.13.8/8.13.8) with SMTP id kAD0b6wl000205;
	Mon, 13 Nov 2006 00:37:06 GMT
Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.175])
	by robin.gentoo.org (8.13.8/8.13.8) with ESMTP id kAD0Z5HU031526
	for <gentoo-user@lists.gentoo.org>; Mon, 13 Nov 2006 00:35:05 GMT
Received: by ug-out-1314.google.com with SMTP id z38so940178ugc
        for <gentoo-user@lists.gentoo.org>; Sun, 12 Nov 2006 16:35:05 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
        s=beta; d=gmail.com;
        h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
        b=g0ungPwAXskwlfKMImuSGCHxF4gFyIzAjKuSLpeDxfWRKZzFlbfcFetUw3zMTwxk7P87e/n2PuQpAgAOLVYGWfSAxy8UaRnsOFxJ1HYmua1H5iAxy1h9CzV/d16LCOsJj1zLcRxzHUvQfKMKaw7OctZTI6aPkg/9YdWLLxDN8GE=
Received: by 10.78.178.5 with SMTP id a5mr5611270huf.1163378104747;
        Sun, 12 Nov 2006 16:35:04 -0800 (PST)
Received: by 10.78.156.8 with HTTP; Sun, 12 Nov 2006 16:35:04 -0800 (PST)
Message-ID: <8f7a9d580611121635m2bf1d0b4j37d59495c3d7f7e0@mail.gmail.com>
Date: Sun, 12 Nov 2006 22:35:04 -0200
From: "Raphael Melo de Oliveira Bastos Sales" <raphael.melo21@gmail.com>
To: gentoo-user@lists.gentoo.org
Subject: [gentoo-user] LDAP + Samba as PDC
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-Archives-Salt: 5cc035eb-46c6-455c-80ff-eaf775f46bb4
X-Archives-Hash: 182dea04a498304a642ef7b7655d980f

Hi everyone,

   I've been trying to set up an authentication server for a mixed LAN
(Windows and Linux clientes ) and I'm having problems with Samba.

   The way it is today, the Windows clients can access the Samba
server and each user can access it's home, by double-clicking on the
server icon on the screen that shows all the machines on the network.

   But I'm unable to register the client workstations on the server.
It says something like "user name not found" when I try to do it. But
the odd thing is, when I look in the LDAP server, there is a registry
of the client there.

   I'd like to know if anyone has managed to do this type of thing
and, if possible, could send me the Samba config file (smb.conf) so I
can see what I'm doing wrong.

  Here is my smb.conf file. If anyone detects what I'm doing wrong,
I'd be grateful.  :)

[global]
server string = %L
workgroup = WORKGROUP
announce as = NT Server

hosts allow = 192.168.0.0/24
security = user
encrypt passwords = yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
interfaces = lo eth1
bind interfaces only = yes

local master = yes
os level = 100
domain master = yes
preferred master = yes

null passwords = no
#hide unreadable = yes

enable privileges = yes

domain logons = yes
logon script = login.bat
logon path = \\%L\profiles\%U
logon drive = H:
logon home = \\%L\%U\.9xprofile

wins support = yes
name resolve order = wins lmhosts host bcast
dns proxy = no

time server = yes
log file = /var/log/samba/log.%m
max log size = 50

passdb backend = ldapsam:ldaps://127.0.0.1:636/

ldap admin dn = cn=Laboratorio,dc=lara,dc=cic,dc=unb,dc=br
ldap port = 636
ldap suffix = dc=lara,dc=cic,dc=unb,dc=br
ldap server = ldaps://127.0.0.1:636/
ldap machine suffix = ou=Computers
ldap user suffix = ou=Users
ldap group suffix = ou=Groups
ldap idmap suffix = ou=Idmap
ldap delete dn = Yes
ldap password sync = yes

add group script = /usr/sbin/smbldap-groupadd -p "%g"
add machine script = /usr/sbin/smbldap-useradd -w "%u"
add user script = /usr/sbin/smbldap-useradd -m "%u"
add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
delete group script = /usr/sbin/smbldap-groupdel "%g"
delete user script = /usr/sbin/smbldap-userdel "%u"
delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
passwd program = /usr/sbin/smbldap-passwd
passwd chat = "*New password:*" %n\r "*New password (again):*" %n\r \
"*Password changed*"
set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"

idmap backend = ldap:ldaps://127.0.0.1:636/
idmap uid = 10000-20000
idmap gid = 10000-20000

unix charset = ISO8859-1

profile acls = yes

[netlogon]
 path = /var/lib/samba/netlogon
 guest ok = no
 read only = yes
 browseable = no

[profiles]
 path = /var/lib/samba/profiles
 browseable = no
 writeable = yes
 default case = lower
 preserve case = no
 short preserve case = no
 case sensitive = no
 hide files = /desktop.ini/ntuser.ini/NTUSER.*/
 write list = @smbusers @root
 create mask = 0600
 directory mask = 0700
 csc policy = disable

[homes]
 path = /home/%U
 browseable = no
 valid users = %S
 read only = no
 guest ok = no
 inherit permissions = yes
-- 
gentoo-user@gentoo.org mailing list