i have just had problems with samba on my RHEL5 machine. i was in contact with RH support, which suggest trying this configuration, testing that it works, then changing what is necessary to align it with your network:
Code:
1. You need to configure your smb.conf as bellow.
==
[global]
workgroup = EXAMPLE.COM
netbios name = PDC
passdb backend = tdbsam
security = user
add user script = /usr/sbin/useradd -m %u
delete user script = /usr/sbin/userdel -r %u
add group script = /usr/sbin/groupadd %g
delete group script = /usr/sbin/groupdel %g
add user to group script = /usr/sbin/usermod -G %g %u
add machine script = /usr/sbin/useradd -s /bin/false -d /dev/null -M %u
logon drive = H:
logon path = \\%L\Profiles\%U
logon home = \\%L\%U
domain logons = Yes
os level = 35
preferred master = Yes
domain master = Yes
[homes]
comment = Home Directories
valid users = %S
read only = No
[netlogon]
comment = Network Logon Service
path = /var/lib/samba/netlogon/scripts
browseable = No
read only = No
[Profiles]
comment = Roaming Profile Share
path = /var/lib/samba/profiles
read only = No
browseable = No
guest ok = Yes
profile acls = Yes
==
Add the root user to smb database
# smbpasswd -a root
Provide the password here.
Start smb service.
Make sure that you have proper netlogon and profiles directory created.
Further you need to do the Net group Mapping as bellow.
==
# net groupmap add ntgroup="Domain Users" unixgroup=users
# net groupmap add ntgroup="Domain Guests" unixgroup=nobody
# net groupmap add ntgroup="Domain Admins" unixgroup=ntadmins
==
Make sure that you have ntadmin, users, nobody groups in your /etc/group
file.
After this you need to grant the access.
# net rpc rights grant 'EXAMPLE.COM\Domain Admins'
SeMachineAccountPrivilege -S PDC -U root
Now add the windows box to this ie: EXAMPLE.COM
