Hi there,

I´m configuring a samba server using RH8 to be integrated as part of a Windows 2000 domain.

As a result of this, I need to setup a way to authenticate my existing Windows users in the samba machine without creating them in the Linux box again.

I´ve installed Winbind, and it works, using PAM modules. But when I try to integrate the PAM module mkhomedir, to create the home directories of the windows users in the samba box, the users cannot longer connect to the samba server. My public dir still works, but users cannot longer connect to their private home directories, it keeps asking for a username and password. My winbindd, smbd and nmbd daemons are up and running, and I can view my windows 2000 domain users and groups through winbind.

Here is my smb.conf:

[global]
workgroup = Labdomain
server string = Nas Server
netbios name = Nas
printcap name = /etc/printcap
load printers = yes
printing = cups
log file = /var/log/samba/%m.log
max log size = 0
#password server = *
encrypt passwords = yes
smb passwd file = /etc/samba/smbpasswd
unix password sync = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *New*password* %n\n *Retype*new*password* %n\n *passwd:*all*authentication*tokens*updated*successfully*
pam password change = yes
obey pam restrictions = yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
;local master = no
wins support = yes
guest ok = yes
security = server
dns proxy = no

[homes]
comment = Home Directories
browseable = no
writeable = yes
valid users = %S
create mode = 0664
directory mode = 0775
map to guest = bad user

[printers]
comment = Color Printer
path = /var/spool/samba
browseable = no
printable = yes

[public]
comment = Public Dir
path = /home/public
writeable = yes
guest ok = yes
browseable = yes
read only = no
public = yes
only guest = yes

When I wasn´t using the PAM modules, and I created my smbusers, I was able to connect to their private dirs and samba created them automatically, but I need to create the users in the linux box first.

What I want is: Some way to tell the Linux box to create home dirs for the windows users without creating them again in the linux box. I know that this is possible, but I want to know how to configure correctly the PAM modules.

Thanks in advance.

hi from what i gather you want a home dir made for an nt user when they connect to the samba machine??? and you want these dirs made in a place of your choosing? ie /ntdomain/<username>

i have been trying to do this for some time now and it is driving me crazy and i am by no means an expert but from what i gather this is what you are meant to do, this may need tweaking a little

first of all you need to make the dir where you want nt profiles stored i used /samba/profiles

and make sure this is writeable

now create a skeleton folder the will be copied to the users home dir when it is created i used /samba/sambaskel

this can contain desktop setting for windows etc

then in your smb.conf file in the globals you need line template homedir = /samba/profiles/%U

change this as you will to suit your dir structure


then in file /etc/pam.d/samba at the top of the session part you need


session required pam_mkhomedir.so skel=/samba/sambaskel umask=0022


please note i have yet to get this to work and if you have any ideas that may help they would be greately appreciated

ill keep you updated of my progress



regards
matt

check this tread, http://www.linuxquestions.org/questi...hreadid=136269