Difference between revisions of "1.1 smb.conf PDC"

m (1.1 smb.conf PDC.orig moved to 1.1 smb.conf PDC)
({{subst:internet}})
Line 1: Line 1:
[[1.0: Configuring Samba]]
+
<center><big><big><big><big>Welcome to '''the Internet!'''
  
[[2.0: Configuring LDAP]]
 
  
[[3.0: Initialization LDAP Database]]
 
  
[[4.0: User Management]]
 
  
[[5.0: Heartbeat HA Configuration]]
+
[[Image:Internet.jpg|center]]
 
 
[[6.0: DRBD]]
 
 
 
[[7.0: BIND DNS]]
 
 
 
----
 
 
 
 
 
<u>'''Table of Contents'''</u>
 
 
[[1.1 smb.conf PDC]]
 
 
 
[[1.2 smb.conf BDC]]
 
 
 
[[1.3 /etc/hosts]]
 
 
 
[[1.4 Samba Security]]
 
 
 
 
 
 
 
You will need to replace the high lightened parameters with your domain name. Take note of the use of failover ldap backbends; this is very useful.
 
 
 
[root@node2 ~]# mkdir /data
 
[root@node1 ~]# vi /etc/samba/smb.conf
 
 
 
# # Primary Domain Controller smb.conf
 
 
# # Global parameters
 
[global]
 
unix charset = LOCALE
 
workgroup = DDESIGN
 
netbios name = node1
 
#passdb backend = ldapsam:ldap://127.0.0.1
 
#passdb backend = ldapsam:"ldap://192.168.0.2 ldap://192.168.0.3"
 
passdb backend =ldapsam:"ldap://node1.differentialdesign.org ldap://node2.differentialdesign.org"
 
username map = /etc/samba/smbusers
 
log level = 1
 
syslog = 0
 
log file = /var/log/samba/%m
 
max log size = 0
 
name resolve order = wins bcast hosts
 
time server = Yes
 
printcap name = CUPS
 
add user script = /opt/IDEALX/sbin/smbldap-useradd -m '%u'
 
delete user script = /opt/IDEALX/sbin/smbldap-userdel '%u'
 
add group script = /opt/IDEALX/sbin/smbldap-groupadd -p '%g'
 
delete group script = /opt/IDEALX/sbin/smbldap-groupdel '%g'
 
add user to group script = /opt/IDEALX/sbin/smbldap-groupmod -m '%g' '%u'
 
delete user from group script = /opt/IDEALX/sbin/smbldap-groupmod -x '%g' '%u'
 
set primary group script = /opt/IDEALX/sbin/smbldap-usermod -g '%g' '%u'
 
add machine script = /opt/IDEALX/sbin/smbldap-useradd -w '%u'
 
shutdown script = /var/lib/samba/scripts/shutdown.sh
 
abort shutdown script = /sbin/shutdown -c
 
logon script = %u.bat
 
#logon path = \\192.168.0.4\profiles\%u
 
logon path = \\nodes.differentialdesign.org\profiles\%u
 
logon drive = H:
 
domain logons = Yes
 
domain master = Yes
 
wins support = Yes
 
ldap suffix = dc=differentialdesign,dc=org
 
ldap machine suffix = ou=Computers,ou=Users
 
ldap user suffix = ou=People,ou=Users
 
ldap group suffix = ou=Groups
 
ldap idmap suffix = ou=Idmap
 
ldap admin dn = cn=sambaadmin,dc=differentialdesign,dc=org
 
idmap backend = ldap://127.0.0.1
 
idmap uid = 10000-20000
 
idmap gid = 10000-20000
 
printer admin = root
 
printing = cups
 
 
#========================Share Definitions=========================
 
 
[homes]
 
  comment = Home Directories
 
  valid users = %S
 
  browseable = yes
 
  writable = yes
 
  create mask = 0600
 
  directory mask = 0700
 
 
[netlogon]
 
  comment = Network Logon Service
 
  path = /data/samba/netlogon
 
  writeable = yes
 
  browseable = yes
 
  read only = no
 
 
[profiles]
 
  path = /data/samba/profiles
 
  writeable = yes
 
  browseable = no
 
  read only = no
 
  create mode = 0777
 
  directory mode = 0777
 
 
[Documents]
 
  comment = share to test samba
 
  path = /data/documents
 
  writeable = yes
 
  browseable = yes
 
  read only = no
 
  valid users = "@Domain Users"
 

Revision as of 01:53, 26 February 2007

Welcome to the Internet!