LDAP SAMBA

potkan na podvodnik.cz potkan na podvodnik.cz
Pátek Září 29 14:41:38 CEST 2006


Mam drobny problem s rozchazenim, Nedari se mi zaregistrovat uzivatele do
domeny (jinak se to tvari, ze to chodi). Nemate nekdo napad? Mam toto
nastaveni - 

user ROOT:
dn: uid=root, ou=People, dc=g,dc=slapanice,dc=cz
sambaLMPassword: HESLO
sambaPrimaryGroupSID: S-1-5-21-28363510-2148069329-850347649-512
displayName: root,,,
objectClass: top
objectClass: sambaSamAccount
uid: root
sambaPwdLastSet: -2147294998
sambaAcctFlags: [U          ]
sambaPwdMustChange: 2147483647
sambaPwdCanChange: -2147294998
sambaNTPassword: HESLO
sambaSID: S-1-5-21-28363510-2148069329-850347649-500
sambaPasswordHistory:
0000000000000000000000000000000000000000000000000000000000000000
cn: Master of Admins
objectClass: person
sn:: U3Byw6F2Y2UgZ3ltbmF6aWE=
userPassword:: HESLO

A smb.conf:

# Global parameters
[global]
	dos charset = CP852
	workgroup = GYMNAZIUM
	server string = Samba %v na serveru %L
	map to guest = Bad User
	passdb backend = ldapsam:ldap://bob.g.slapanice.cz/
	username map = /etc/samba/smbusers
	log level = 10
	syslog = 0
	log file = /var/log/samba/log.%m
	max log size = 1000
	load printers = No
	show add printer wizard = No
	add user script = /usr/sbin/smbldap-useradd -a -g 201 -n -m '%u'
	delete user script = delete user script =/usr/sbin/smbldap-userdel '%u'
	add group script = /usr/sbin/smbldap-groupadd `echo "%g"|sed "s/ /_/g"`
	delete group script = /usr/sbin/smbldap-groupdel `echo "%g"|sed "s/
/_/g"`
	add user to group script = /usr/sbin/smbldap-groupmod -m '%u' `echo
"%g"|sed "s/ /_/g"`
	delete user from group script = /usr/sbin/smbldap-groupmod -x '%u' `echo
"%g"|sed "s/ /_/g"`
	add machine script = add machine script = /usr/sbin/smbldap-useradd -w -s
/bin/false '%u'
	domain logons = Yes
	os level = 65
	domain master = Yes
	dns proxy = No
	wins support = Yes
	ldap admin dn = cn=admin4m,dc=g,dc=slapanice,dc=cz
	ldap group suffix = ou=Group
	ldap machine suffix = ou=Computers
	ldap passwd sync = Yes
	ldap suffix = dc=g,dc=slapanice,dc=cz
	ldap ssl = no
	ldap user suffix = ou=People
	panic action = /usr/share/samba/panic-action %d
	idmap uid = 10000-20000
	idmap gid = 10000-20000
	winbind use default domain = Yes

[homes]
	comment = Home Directories
	read only = No
	create mask = 0600
	directory mask = 0700
	browseable = No

[netlogon]
	comment = Network Logon Service
	path = /home/samba/netlogon
	browseable = No
	share modes = No

[Profiles]
	comment = User's profils
	path = /home/samba/profiles
	create mask = 0600
	directory mask = 0700
	guest ok = Yes
	browseable = No



Další informace o konferenci Linux