[Ubuntu-BR] Configurar o SQUID para autenticar automaticamente um usuário logado em um domínio com SAMBA (PDC)
Tiago Cruz
tiagocruz em forumgdh.net
Sexta Junho 1 17:03:44 UTC 2007
Sugestões:
Comenta o password server
Aumenta o debug level
Verifica nos logs o que acontece.
On Fri, 2007-06-01 at 10:56 -0300, Bruno Galindro da Costa wrote:
> >
> > Sim, a única restrição é não usar proxy transparente. É necessário que o
> > proxy esteja informado no navegador. O problema fica em programas que
> > não suportam configuração de proxy, esses não irão funcionar (a não ser
> > que você faça um DNAT para essa estação).
> >
> > O "password server" seria seu próprio samba.
> >
>
> Obrigado pela ajuda Tiago, mas mesmo assim não deu certo. Acontece um erro
> qndo eu tento conectar o winbind através do comando net join -W DOMINIO -u
> root
>
> abaixo segue o meu smb.conf:
>
> # Area global
>
> [global]
> workgroup = EDUCACAO
> netbios name = srv-sme
> server string = Servidor de Dados
> admin users = +admin
> # time server = yes
> preferred master = yes
> domain master = yes
> os level = 100
> domain logons = yes
> local master = yes
> logon drive = U:
> logon home = \\%L\%U\.profiles
> logon path = \\%L\profiles\%U
> preserve case = yes
> short preserve case = yes
> case sensitive = no
> security = domain
> password server = 127.0.0.1
> null passwords = no
> encrypt passwords = true
> unix charset = iso8859-1
> display charset = cp850
> hosts allow = 192.168.1. 127.0.0.1
> log file = /var/log/samba/log.%M
> log level = 2
> logon script = %G.bat
> debug level = 2
> max log size = 10000
> wins support = yes
> hide files = /desktop.ini/Desktop.ini/
> socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
> winbind uid = 10000-20000
> winbind gid = 10000-20000
> winbind enum users =yes
> winbind enum groups = yes
> template homedir = /dev/null
> template shell = /dev/null
> winbind use default domain = yes
>
> [profiles]
> path = /documentos/netlogon/profiles
> writeable = Yes
> browseable = No
> create mask = 0600
> directory mask = 0700
>
> [netlogon]
> comment = Servico de logon
> path = /documentos/netlogon
> browseable = no
> read only = yes
>
> #####################################################################
> # Area publica - acesso livre
> [documentos]
> browseable = yes
> security = user
> guest ok = no
> available = yes
> create mode = 0777
> path = /documentos/publico
> writable = yes
> delete readonly = no
> valid users = +restrito +pessoal +diretoria +admin
> null passwords = no
> encrypt passwords = true
> unix charset = iso8859-1
> display charset = cp850
>
> #####################################################################
> # Oficios
> [oficios]
> browseable = yes
> security = user
> guest ok = no
> available = yes
> create mode = 0777
> path = /documentos/oficios
> writable = yes
> delete readonly = no
> valid users = +pessoal +restrito +admin +diretoria
> null passwords = no
> encrypt passwords = true
> unix charset = iso8859-1
> display charset = cp850
>
> [homes]
> browseable = yes
> security = user
> guest ok = no
> available = yes
> create mode = 0777
> valid users = %S
> writable = yes
> null passwords = no
> encrypt passwords = true
> unix charset = iso8859-1
> display charset = cp850
>
> #####################################################################
> # Area administrativa
> [documentos_global]
> browseable = yes
> security = user
> guest ok = no
> available = yes
> create mode = 0777
> path = /documentos
> writable = yes
> delete readonly = no
> valid users = +admin +diretoria
> null passwords = no
> encrypt passwords = true
> unix charset = iso8859-1
> display charset = cp850
>
> [imagens]
> browseable = yes
> security = user
> guest ok = no
> available = yes
> create mode = 0777
> path = /imagens
> writable = yes
> delete readonly = no
> valid users = +admin
> null passwords = no
> encrypt passwords = true
> unix charset = iso8859-1
> display charset = cp850
>
> [backup]
> browseable = yes
> security = user
> guest ok = no
> available = yes
> path = /backup
> writable = yes
> delete readonly = no
> valid users = +admin
> null passwords = no
> encrypt passwords = true
> unix charset = iso8859-1
> display charset = cp850
> create mode = 0700
> veto files = /*.mp3/*.wma/*.wmv/*.avi/*.mpg/*.doc/*.xls/*.jpg/*.jpeg
>
>
> e abaixo segue o erro:
>
> [root em srv-sme samba]# net join -W EDUCACAO -U root
> Password:
> Creation of workstation account failed
> Unable to join domain EDUCACAO.
>
> O usuário root já está cadastrado no samba: smbpasswd -a root e a senha eu
> estou digitando corretamente.
>
> aguardo resposta
> --
> Bruno Galindro da Costa
> bruno.galindro em gmail.com
> Imbituba - SC
--
Tiago Cruz
http://everlinux.com
Linux User #282636
More information about the ubuntu-br
mailing list