Re: lug-bg: Samba+PDC (Was: IPX + Linux->Win)
- Subject: Re: lug-bg: Samba+PDC (Was: IPX + Linux->Win)
- From: jordan@xxxxxxxxxxxxxxxxxxxxxx (Jordan Denev)
- Date: Thu, 11 Mar 1999 17:19:49 +0200
Eto leko redaktiran config ot hashia samba server.
Vassiliy Yordanov wrote:
> Blagodarq za otgovorite.
> Dali e vazmozhno da izpratite raboteshti za vashite sistemi .conf failove,
> zashtoto opredeleno ne sam v sastoqnie da se spravq s problema ?
>
> >Kakaw e smisala ot NT-to ?
> Linuxat e instaliran na mashina, koqto trqbva da raboti osnovno pod drugi
> operacionni sistemi.
>
> -----Original Message-----
> From: Jordan Denev <jordan@xxxxxxxxxxxxxxxxxxxxxx>
> To: lug-bg@xxxxxxxxxxxxxxxx <lug-bg@xxxxxxxxxxxxxxxx>
> Date: Thursday, March 11, 1999 12:02 PM
> Subject: Re: lug-bg: IPX + Linux->Win
>
> >Gore dolu polovin godina v Intransco BG (Samba 1.19).
> >Izpolzwame authentikaqta ot PDC-to.
> >Mejdu drugoto veche ima Samba 2.0.3 s mnogo
> >po-golemi vazmojnosti. Moje da se konfigurira
> >ot Web browser (kakto se kazwa - na lubitelq).
> >
> >
> >
> >
> >Vassiliy Yordanov wrote:
> >
> >> Nakoi uspqval li e da podkara samba-server v mrezha s domain-bazirano
> >> security s NT Server kato PDC, koito da izvarshva authentikaciqta na
> >> samba-userite, vmesto s otdelni paroli na samba-servera ?
> >>
> -----Original Message-----
> From: operator <operator@xxxxxxxxxxx>
> To: lug-bg@xxxxxxxxxxxxxxxx <lug-bg@xxxxxxxxxxxxxxxx>
> Date: Thursday, March 11, 1999 12:12 PM
> Subject: Re: lug-bg: IPX + Linux->Win
>
> >Vassiliy Yordanov wrote:
> >
> >> Nakoi uspqval li e da podkara samba-server v mrezha s domain-bazirano
> >> security s NT Server kato PDC, koito da izvarshva authentikaciqta na
> >> samba-userite, vmesto s otdelni paroli na samba-servera ?
> >>
> >
> >Znachi, pri namiraneto na niakolko DC w mrezhata te pochwat da 'natdawat'
> >za
> >prawoto da badat PDC (taka narechenite elections), i NT-to naddawa do 32.
> >
> >Ako w smb.conf se zadade 33 ili po-goliamo chislo, Linux-a pecheli. No
> >ako e po-malko -
> >NT-to. Taka che mozhe, no ne sam opitwal - predpochitam Linux-a da mi e
> >Primary-to.
> >Kakaw e smisala ot NT-to ?
> >
> >operator-a
> >
>
> ==================================================================
> A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
> For more send to lug-bg-request@xxxxxxxxxxxx a single word 'info'
> ==================================================================
; The global setting for a RedHat default install
; smbd re-reads this file regularly, but if in doubt stop and restart it:
; /etc/rc.d/init.d/smb stop
; /etc/rc.d/init.d/smb start
;======================= Global Settings =====================================
[global]
; workgroup = NT-Domain-Name or Workgroup-Name, eg: REDHAT4
workgroup = <YOUR_DOMAIN_NAME>
netbios name = <NETBIOS_NAME_OF_THE_SMB>
; comment is the equivalent of the NT Description field
comment = INTRANSCO Sofia Samba Server
; volume = used to emulate a CDRom label (can be set on a per share basis)
volume = <VOLUME_NAME>
; printing = BSD or SYSV or AIX, etc.
printing = bsd
printcap name = /etc/printcap
load printers = yes
print command = lpr -P%p %s
lpq command = lpq -P%p
lprm command = lprm -P%p %j
; Uncomment this if you want a guest account
guest account = pcguest
log file = /var/log/samba-log.%m
; Put a capping on the size of the log files (in Kb)
max log size = 50
; Options for handling file name case sensitivity and / or preservation
; Case Sensitivity breaks many WfW and Win95 apps
; case sensitive = yes
short preserve case = yes
preserve case = yes
; Security and file integrity related options
lock directory = /var/lock/samba
locking = yes
strict locking = yes
; fake oplocks = yes
share modes = yes
; Security modes: USER uses Unix username/passwd, SHARE uses WfW type passwords
; SERVER uses a Windows NT Server to provide authentication services
; security = user
;==================
security = SERVER ;<-Pay attention
;==================
; Use password server option only with security = server
password server = <your PDC >
; Configuration Options ***** Watch location in smb.conf for side-effects *****
; Where %m is any SMBName (machine name, or computer name) for which a custom
; configuration is desired
; include = /etc/smb.conf.%m
; Performance Related Options
; Before setting socket options read the smb.conf man page!!
; socket options = TCP_NODELAY
; Socket Address is used to specify which socket Samba
; will listen on (good for aliased systems)
; socket address = aaa.bbb.ccc.ddd
; Use keep alive only if really needed!!!!
; keep alive = 60
; Domain Control Options
; OS Level gives Samba the power to rule the roost. Windows NT = 32
; Any value < 32 means NT wins as Master Browser, > 32 Samba gets it
;=======================
; It's better to set OS LEVEL to 0 to avoid interference with PDC
os level = 16
;=======================
; specifies Samba to be the Domain Master Browser
;=======================
; That what's talking about an election over the network!
;========================================================
domain master = no
;========================================================
; Use with care only if you have an NT server on your network that has been
; configured at install time to be a primary domain controller.
domain controller = <FQDN name of your PDC>
; Domain logon control can be a good thing! See [netlogon] share section below!
;====================================================
; This is used ONLY when you want to use SMB as a domain logon server
domain logons = no
;====================================================
; run a specific logon batch file per workstation (machine)
; logon script = %m.bat
; run a specific logon batch file per username
; logon script = %u.bat
; Windows Internet Name Serving Support Section
; WINS Support - Tells the NMBD component of Samba to enable it's WINS Server
; the default is NO.
wins support = no
; WINS Server - Tells the NMBD components of Samba to be a WINS Client
; Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
;====================================================
; This is a good idea to use a WINS server for reducing a
; network traffic. You can find how WINS works on MCP site
; of Microsoft.
wins server = <IP_NUMBER_OF_WINS_SERVER>
;====================================================
; WINS Proxy - Tells Samba to answer name resolution queries on behalf of a non
; WINS Client capable client, for this to work there must be at least one
; WINS Server on the network. The default is NO.
; wins proxy = yes
;
;====================================================
; Read tha manual about this parameter.
local master = no
;====================================================
;============================ Share Declarations ==============================
[homes]
comment = Home Directories
browseable = no
read only = no
preserve case = yes
short preserve case = yes
create mode = 0750
directory mask = 0750
; Un-comment the following and create the netlogon directory for Domain Logons
; [netlogon]
; comment = Samba Network Logon Service
; path = /home/netlogon
; Case sensitivity breaks logon script processing!!!
; case sensitive = no
; guest ok = yes
; locking = no
; read only = yes
; browseable = yes ; say NO if you want to hide the NETLOGON share
; admin users = @wheel
; NOTE: There is NO need to specifically define each individual printer
[printers]
comment = All Printers
path = /var/spool/samba
browseable = no
printable = yes
; Set public = yes to allow user 'guest account' to print
public = yes
writable = no
create mode = 0700
;[tmp]
; comment = Temporary file space
; path = /tmp
; read only = no
; public = yes
; A publicly accessible directory, but read only, except for people in
; the staff group
;[public]
; comment = Public Stuff
; path = /home/samba
; public = yes
; writable = yes
; printable = no
; write list = @users
; Other examples.
;
; A private printer, usable only by fred. Spool data will be placed in fred's
; home directory. Note that fred must have write access to the spool directory,
; wherever it is.
;[fredsprn]
; comment = Fred's Printer
; valid users = fred
; path = /homes/fred
; printer = freds_printer
; public = no
; writable = no
; printable = yes
;
; A private directory, usable only by fred. Note that fred requires write
; access to the directory.
;[fredsdir]
; comment = Fred's Service
; path = /usr/somewhere/private
; valid users = fred
; public = no
; writable = yes
; printable = no
;
; a service which has a different directory for each machine that connects
; this allows you to tailor configurations to incoming machines. You could
; also use the %u option to tailor it by user name.
; The %m gets replaced with the machine name that is connecting.
;[pchome]
; comment = PC Directories
; path = /usr/pc/%m
; public = no
; writeable = yes
;
;
; A publicly accessible directory, read/write to all users. Note that all files
; created in the directory by users will be owned by the default user, so
; any user with access can delete any other user's files. Obviously this
; directory must be writable by the default user. Another user could of course
; be specified, in which case all files would be owned by that user instead.
; The following two entries demonstrate how to share a directory so that two
; users can place files there that will be owned by the specific users. In this
; setup, the directory should be writable by both users and should have the
; sticky bit set on it to prevent abuse. Obviously this could be extended to
; as many users as required.
;[myshare]
; comment = Mary's and Fred's stuff
; path = /usr/somewhere/shared
; valid users = mary fred
; public = no
; writable = yes
; printable = no
; create mask = 0765
==================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
For more send to lug-bg-request@xxxxxxxxxxxx a single word 'info'
==================================================================
|