The SAMBA-LDAP-PDC Howto

14.4

Revision : 1.24

Creating an user account

You cannot16 create user accounts with Microsoft Windows NT Domain management tools:
you must use the smbldap-tools (or any other LDAP manipulation tools). To do so, see
section 8 on page 20. If interested in a graphical user interface to manager user and group
accounts, please have a look on the idxldapaccounts Webmin module available at http:
//webmin.idealx.org/
To test:
• create an user account for ’testsmbuser’ ( ?? on page ??)
• verify this user account is ok :
$id testsmbuser
should return something like that:
[root@speed3 samba]# id testsmbuser
uid=1008(testsmbuser) gid=100(users) groups=100(users),201(Domain Users)

• additionnaly, if you’re using an ldapbrowser, you should see the new uid=testsmbuser,ou=Users,dc=IDEA
in the directory.

14.5

Logging in the domain as testsmbuser

You need to use an already Domain added workstation to proceed this test. This is previously
explained is section 14.2 or 14.3.
Call the Winlogon (CTRL-ALT-SUPPR), and enter:
• Login : testsmbuser
• Password : coucou17
• Domain : IDEALX-NT
You should then log on fine. When you log in the domain with your username testsmbuser,
verify that those differents points are ok:
• browse your personal folder and all shared folders, and read a file
• create a new file in your home directory, verify that you can save it
• verify that all permissions seems right: you can’t browse a directory you don’t have the
permissions to, you can’t edit or/and modify a file you don’t have permissions to.
16
17

AFAIK with release 2.2.4 of Samba
in fact, the one you gave in the section : ?? on page ??

page 37/56