The SAMBA-LDAP-PDC Howto

Revision : 1.24

the global section and the script must be a relative path to the [netlogon] service. For example,
if the [netlogon] service specifies a path of /opt/samba/netlogon (like in our example), than if
the script is defined as logon script = STARTUP.BAT, then the file that will be downloaded
is /opt/samba/netlogon/STARTUP.BAT. Finally, we defined a doc section that authorized
everybody to browse the /usr/share/doc documentation directory.
[global]
...
logon script = STARTUP.BAT
...
[netlogon]
comment = Network Logon Service
path = /opt/samba/netlogon
guest ok = Yes
[doc]
path=/usr/share/doc
public=yes
writable=no
read only=no
create mask = 0750
guest ok = Yes

For example, we could have the STARTUP.BAT script that set the documentation directory
mounted on the J volume on windows clients. Another useful command set windows time
synchronized to the server’s one:
NET USE J: \\PDC-SRV\doc
NET TIME \\PDC-SRV /SET /YES

6.2

Preparation

You must create some directories, according to your /etc/smb.conf :
mkdir
mkdir
mkdir
chmod

6.3

/opt/samba
/opt/samba/netlogon
/opt/samba/profiles
1757 /opt/samba/profiles

Initial entries

Samba must know the passwd of the ldap admin dn (cn=Manager,dc=IDEALX,dc=ORG)
you’ve specified in smb.conf to be able to add/modify accounts stored in the LDAP SAM.
page 17/56