[CoLoCo] Samba at Free Horizon Montessori

Jeffrey LePage jeffrey_lepage at yahoo.com
Sun Jul 20 16:34:30 BST 2008 

Hello everybody:

This is primarily aimed at David Willson and Kevin Fries, but I thought others might be interested.

My attempts to convert Free Horizon Montessori continue.  We got our new Linux boxen, all 20 of them.  I loaded the OS and got everything to work, with only 2 problems:
1) GoogleEarth beta does not work properly on Hardy Heron.  It only loads data when run for the first time after the install.  I dropped back to the previous stable version.
2) The installer couldn't properly configure xorg.conf to work with some really old Dell LCD monitors.  After much fooling around I managed to boot up in 640x480 and run the configuration utility.  After I told ubuntu the make/model of the lcd it worked, sort of.  I still had to tweak the virtual screen size.  

The Asus Eee PC's are on the way.  As are 2 wrt54gl's, which will supply wireless.

Now, the samba problem.  I am converting off of a Win2k3 server to a Samba domain controller.  I realize that Samba does not support Win2k3-style AD, but we don't need it.  I have configured the samba server so that users running (our last remaining) winxp machines can join the new domain, authenticate, and access their home directory (stored on the samba server).  However, I'm still trying to figure out how to set up user profiles.  I get all sorts of nasty messages when a user logins to the domain about missing profiles.  Does anyone know how to create an NT-style profile from scratch, or convert a Win2k3-style profile to a Samba-compatible (NT-style) profile?

One thing I tried was to copy an existing profile (the contents of E:\profiles\username) on the Win2k3 server that belonged to the domain admin to the relevant directory on the samba server.  This didn't work, probably because the user names are  not the same.  Hey, I didn't really expect it to work, but I wanted to try the simplest possible method.

I've been more or less following the directions in O'Reilly's Using Samba, 3rd edition.
  
Here's my smb.conf:

************************************
# Samba config file created using SWAT
# from 192.168.0.2 (192.168.0.2)
# Date: 2008/07/06 17:30:08
#
# NMBD: This daemon handles Samba's NetBIOS name registration, 
#       implements a Microsoft-compatible NetBIOS Name Server (NBNS) service, 
#       also referred to a WINS server, and partcipates in browsing elections.

[global]
        netbios name = SAMBA1
        passdb backend = tdbsam
        workgroup = ORA
        security = user
        encrypt passwords = yes 
        # enable privileges = yes by default
        # Once this feature is enabled, the primary means of 
        # managing privilege assignments on a Samba server is the rpc rights 
        # subcommand of the net utility.
        enable privileges = yes
        domain master = yes
        domain logons = yes
        os level = 33
        preferred master = yes
        local master = yes
        add machine script = /usr/sbin/useradd -g hosts -s /bin/false '%u' 
        add user script = /usr/sbin/useradd -m '%u'
        delete user script = /usr/sbin/userdel '%u'
        rename user script = /usr/sbin/usermod -l '%unew' '%uold'
        add group script = /usr/sbin/groupadd '%g'
        delete group script = /usr/sbin/groupdel '%g'

# add user to group script = /usr/sbin/groupmod -A '%u' '%g' THIS DOES NOT WORK
#root at testdc:~# usermod -a -G blah3 blah2
#root at testdc:~# egrep blah /etc/passwd /etc/group
#/etc/passwd:blah2:x:1005:1006::/home/blah:/bin/sh
#/etc/group:blah:x:1006:
#/etc/group:blah3:x:1007:blah2
        add user to group script = /usr/sbin/usermod -a -G '%g' '%u'
#root at testdc:~# deluser blah2 blah3
#Removing user `blah2' from group `blah3' ...
#Done.
#root at testdc:~# egrep blah /etc/passwd /etc/group
#/etc/passwd:blah2:x:1005:1006::/home/blah:/bin/sh
#/etc/group:blah:x:1006:
#/etc/group:blah3:x:1007:
#
#       delete user from group script = /usr/sbin/groupmod -D '%u' '%g' do not use this
        delete user from group script =   deluser '%u' '%g'  
        set primary group script = /usr/sbin/usermod -g '%g' '%u'

        logon path = \\SAMBA1\profile$\%U\%a
        logon home = \\SAMBA1\%U
        logon drive = H: 
        # need to make a script for this
        # logon script = %G.bat 
[public]
        path = /export/tmp
        read only = No

[netlogon]
        comment = Net Logon service
        path = /data/netlogon
        read only = yes
        write list = +ntadmin

[profile$]
        comment = User roaming profiles
        path = /data/profiles
        read only = no
        inherit permissions = yes

[homes]
        comment = Home directory for %U
        read only = no
        valid users = %S




-- 
Please avoid sending me Word or PowerPoint attachments.
See http://www.gnu.org/philosophy/no-word-attachments.html

More information about the Ubuntu-us-co mailing list