LDAP SAMBA
potkan na podvodnik.cz
potkan na podvodnik.cz
Pátek Září 29 14:41:38 CEST 2006
Mam drobny problem s rozchazenim, Nedari se mi zaregistrovat uzivatele do
domeny (jinak se to tvari, ze to chodi). Nemate nekdo napad? Mam toto
nastaveni -
user ROOT:
dn: uid=root, ou=People, dc=g,dc=slapanice,dc=cz
sambaLMPassword: HESLO
sambaPrimaryGroupSID: S-1-5-21-28363510-2148069329-850347649-512
displayName: root,,,
objectClass: top
objectClass: sambaSamAccount
uid: root
sambaPwdLastSet: -2147294998
sambaAcctFlags: [U ]
sambaPwdMustChange: 2147483647
sambaPwdCanChange: -2147294998
sambaNTPassword: HESLO
sambaSID: S-1-5-21-28363510-2148069329-850347649-500
sambaPasswordHistory:
0000000000000000000000000000000000000000000000000000000000000000
cn: Master of Admins
objectClass: person
sn:: U3Byw6F2Y2UgZ3ltbmF6aWE=
userPassword:: HESLO
A smb.conf:
# Global parameters
[global]
dos charset = CP852
workgroup = GYMNAZIUM
server string = Samba %v na serveru %L
map to guest = Bad User
passdb backend = ldapsam:ldap://bob.g.slapanice.cz/
username map = /etc/samba/smbusers
log level = 10
syslog = 0
log file = /var/log/samba/log.%m
max log size = 1000
load printers = No
show add printer wizard = No
add user script = /usr/sbin/smbldap-useradd -a -g 201 -n -m '%u'
delete user script = delete user script =/usr/sbin/smbldap-userdel '%u'
add group script = /usr/sbin/smbldap-groupadd `echo "%g"|sed "s/ /_/g"`
delete group script = /usr/sbin/smbldap-groupdel `echo "%g"|sed "s/
/_/g"`
add user to group script = /usr/sbin/smbldap-groupmod -m '%u' `echo
"%g"|sed "s/ /_/g"`
delete user from group script = /usr/sbin/smbldap-groupmod -x '%u' `echo
"%g"|sed "s/ /_/g"`
add machine script = add machine script = /usr/sbin/smbldap-useradd -w -s
/bin/false '%u'
domain logons = Yes
os level = 65
domain master = Yes
dns proxy = No
wins support = Yes
ldap admin dn = cn=admin4m,dc=g,dc=slapanice,dc=cz
ldap group suffix = ou=Group
ldap machine suffix = ou=Computers
ldap passwd sync = Yes
ldap suffix = dc=g,dc=slapanice,dc=cz
ldap ssl = no
ldap user suffix = ou=People
panic action = /usr/share/samba/panic-action %d
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind use default domain = Yes
[homes]
comment = Home Directories
read only = No
create mask = 0600
directory mask = 0700
browseable = No
[netlogon]
comment = Network Logon Service
path = /home/samba/netlogon
browseable = No
share modes = No
[Profiles]
comment = User's profils
path = /home/samba/profiles
create mask = 0600
directory mask = 0700
guest ok = Yes
browseable = No
Další informace o konferenci Linux