The SAMBA-LDAP-PDC Howto

Revision : 1.24

If you just want to update data from PDC to the LDAP directory, but don’t want to create
any new accounts (perhaps as they are not all ’regular accounts’), and want to create the
home directory, just issue the following command, on the server you are configuring:
smbldap-migrate-accounts.pl -C -A "-m" < pwdump-file.txt

17.1.2

Groups and members

To be written ! as the tools they are based on (smbldap-migrate-groups.pl, part of the
smbldap-tools).
17.1.3

Logon scripts

Logon scripts are DOS scripts that are run every time someone logs on. They must be placed
on the [netlogon] special share, and you can specify, for each user, the location of this script
in the scriptPath LDAP attribute.
For example, if you special netlogon share is defined like the following example, in your
/opt/samba/etc/smb.conf:
1
2
3
4

[netlogon]
comment = Network Logon Service
path = /data/samba/netlogon
guest ok = Yes

5

And you want the user myuser to execute the script named myuser.cmd, just complete the
following operations:
• copy the myuser.cmd from the old PDC to the new Linux server on /opt/samba/netlogon/myuser.cmd,
• modify the LDAP user definition by placing myuser.cmd on the scriptPath attribute,
• logon as myuser on a Microsoft Windows NT (or Microsoft Windows 2000) workstation
connected to the domain, just to test the logon script activation on login.
So, to migrate all logons scripts from the old Microsoft Windows NT PDC to the new Linux
server, just copy all logon scripts (placed in C:\WINNT\sysem32\repl\import\) to /opt/samba/netlogon/,
and modify your scriptPath users definitions in the LDAP directory to record the name of
the user’s logon scripts.
Note that the old ’logon scripts’ directive of smb.conf will no longer be used when using
Samba and LDAP together, with release 2.2.4 of Samba.
17.1.4

Users profiles

To be written.
page 44/56