The SAMBA-LDAP-PDC Howto

Revision : 1.24

passwd program = /usr/local/sbin/smbldap-passwd.pl -o %u
passwd chat = *new*password* %n\n *new*password* %n\n *successfully*
unix password sync = Yes
...
; SAMBA-LDAP declarations
ldap suffix = dc=IDEALX,dc=ORG
ldap admin dn = cn=Manager,dc=IDEALX,dc=ORG
ldap port = 389
ldap server = 127.0.0.1
ldap ssl = No

add user script = /usr/local/sbin/smbldap-useradd.pl -m -d /dev/null -g 1000 -s /bin/fal
...
character set = iso8859-1

the shares sections Here takes place all the share sections. In particular, we can define
all the user’s home directories which are defined by the [homes] section:
[homes]
comment = Home Directories
valid users = %S
read only = No
create mask = 0664
directory mask = 0775
browseable = No
Here is the path to the profiles’s directory. Profile of all users will be stored here. This is
the root directory for profiles and the ldap variable profilePath specify exactly the path for
each users. For example if the profilePath is set to \\PDC-SRV\profiles\testuser, than the
profile directory for user testuser is /opt/samba/profiles/testuser/. Make sure to have the
right permission for this directory. The sticky bit must be set. Make a simple chmod 1757
/opt/samba/profiles and it will be ok. Don’t forget that the system doesn’t take this change
immediately. You should wait several minutes before any profile takes place.
[profiles]
path = /opt/samba/profiles
writeable = yes
browseable = no
create mode = 0644
directory mode = 0755
guest ok = yes
If you want command’s file to be downloaded and ran when a user successfully logged, you
have to define a netlogon section and a netlogon script. The netlogon script must take place in
page 16/56