The SAMBA-LDAP-PDC Howto

8.1.3

Revision : 1.24

scriptPath

The script path override the ’logon script’ directive of smb.conf (if exist). Variable substitution
(given in this attribute is relative to the netlogon share.

8.2

smbldap-tools

To manipulate user accounts, we’ve developped a collection of PERL scripts named smbldap-tools
: they provide all the tools you need to manage user and groups accounts, in a LDAP directory.
Because we’ve merged posixAccount (and soon, shadowAccount too) and sambaAccount,
those scripts may be used to manage Unix and Windows (Samba) accounts. As most of
existing software are LDAP aware, you can use your SAMBA-LDAP PDC to be an unique
source of authentification, and the smbldap-tools may offer you a good base to manage user
accounts datas.
In this Howto, we have used the following tools to manage user accounts :
• smbldap-useradd.pl : to add an user account (by default a posixAccount. Using ’-a’
option for a sambaAccount, ’-w’ option for a machine sambaAccount),
• smbldap-userdel.pl : to delete an existing user account
• smbldap-usermod.pl : to modify an user account.
8.2.1

Create a Unix (Posix) user account

For example, to create a new posixAccount (only usefull for Unix) named testposixuser (we’ll
use ’coucou’ as the password when asked):
[root@pdc-srv testsmbuser2]# smbldap-useradd.pl -m testposixuser
adding new entry "uid=testposixuser,ou=Users,dc=IDEALX,dc=ORG"
[root@pdc-srv testsmbuser2]# smbldap-passwd.pl testposixuser
Changing password for testposixuser
New password for user testposixuser:
Retype new password for user testposixuser:
all authentication tokens updated successfully

8.2.2

Create an Samba user account

For example, to create a new sambaAccount (for use under Unix and Samba) named jdoo
(we’ll use ’coucou’ as the password when asked) :

page 23/56