Vista previa del documento samba ldap howto - Página 15/56 - Caja PDF

samba ldap howto.pdf

Vista previa del archivo PDF samba-ldap-howto.pdf

Página 1...13 14 1516 17 56

Vista previa de texto

The SAMBA-LDAP-PDC Howto

6

Revision : 1.24

Configuring Samba

Here, we’ll configure Samba as a Primary Domain Controler for the Microsoft Windows NT
Domain named IDEALX-NT with the SAM database stored in our OpenLDAP server.

6.1

Configuration

We need to configure /etc/samba/smb.conf like in the example of 22.4 on page 55, assuming
that :
• Our Microsoft Windows NT Domain Name will be : IDEALX-NT
• Our server Netbios Name will be : PDC-SRV
• Our server will allow roving/roaming profiles
• All samba share will rely on /opt/samba/* excepted for home directories (always on
/home/USERNAME).
• We really want our Samba-LDAP PDC server to be the domain browser on the LAN.
Edit your /etc/samba/smb.conf like in the example of 22.4 on page 55 to configure your Samba
server. Let make some remarques about this file:
the global section This section allow you to configure the global parameter of the server.
Here takes places all the parameters we defined in the previous paragraph. We also have
defined the program used for a user to change his password (passwd program) and the dialog
used between the server and the user during the change.
The option ”add user script” allow smbd to add, as root, a new machine. When a machine
contact the domain, this script is called and the new machine is added to the domain. This
makes easily the administration of machine’s account. For security, not all the machines could
logged to the domain, but only a administrator who has a privilege account.
For french users, we added a line that allow smbd to map incoming filenames from a DOS
code page. This option is very useful if you want that files and directories in your profiles are
saved with all the accents they have. Don’t forget to read the man page for more detail: this
option is a Western European UNIX character set. The parameter client code page MUST
be set to code page 850 in order for the conversion to the UNIX character set to be done
correctly.
[global]
workgroup = IDEALX-NT
netbios name = PDC-SRV
server string = SAMBA-LDAP PDC Server
...
page 15/56