LinuxQuestions.org - Help with Samba PDC

- Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)

- - Help with Samba PDC (https://www.linuxquestions.org/questions/linux-networking-3/help-with-samba-pdc-162045/)

Help with Samba PDC

ok, I am trying to set up this computer as a samba PDC, but so far I have not been able to do so. Im using Slackware 9.1 and Samba 3.0.1. Here is my smb.conf

[global]
workgroup = FIGANET
netbios name = DOMAIN
server string = Samba Server
log file = /var/log/samba.%m
max log size = 50
add user script = /usr/sbin/useradd %u
delete user script = /usr/sbin/userdle %u
add group script = /usr/sbin/groupadd %g
delete group script = /usr/sbin/groupdel %g
delete user from group script = /usr/sbin/deluser %u %g
add machine script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %u
domain logons = Yes
os level = 65
preferred master = Yes
domain master = Yes
dns proxy = No

[homes]
comment = Home Directories
read only = No
browseable = No

[netlogon]
comment = Network Logon Service
path = /usr/local/samba/lib/netlogon
guest ok = Yes
share modes = No

[Profiles]
path = /usr/local/samba/profiles
guest ok = Yes
browseable = No

[printers]
comment = All Printers
path = /var/spool/samba
printable = Yes
browseable = No

now after reading the documentation from the samba.org site it says to add something like this line

; instead of jay, use the names of all users in the Windows NT/2000/XP
; Administrators group who log on to the domain
domain admin group = root jay

but I guess this does not work for samba 3. Now the smbpasswd -a username is not working either, I get this message:

bash-2.05b# smbpasswd -a user1
New SMB password:
Retype new SMB password:
Failed to initialise SAM_ACCOUNT for user user1.
Failed to modify password entry for user user1

Reading online documentation is just making it worse. Everyone has a different way of configuring a PDC.

Now another thing that I don't understand, when adding a Win2000 machine to the domain, am I supposed to do it the usual way by right ckick on my computer and then adding it to the domain through the network identification tab, or is there a different process to do this?

Now is late, I will try reading everything again tomorow or hitting Borders and getting The Official Samba-3 HOWTO and Reference Guide, but if anyone has any suggestion I will apreciate it so much.

Thanks

-- Figa

Re: Help with Samba PDC

1) add 'security = user' to [global] section
2) Samba 3 doesnt use 'domain admin group' setting anymore, u need to map nt group to an existing linux group via 'net' command. Its something like 'net groupmap ...' u ll find it in Samba-Howto-Collection which is on the samba web site.
3) About adding an user using 'smbpasswd -a user1': did u create a linux account for this user before?
4) Adding client machines to a domain. You will need to go to control panels in w2k - system - network identification (or how its called i dont have w2k nearby) and set domain to log in to your desired name. Then it will ask for a username/pw - u need to enter either root/roots_password or username/pw of a member of domain admin group (which u have mapped via 'net' cmd before

muah thanks,

I did have security = user, but I think swat messed it up. I have never like it.

3) About adding an user using 'smbpasswd -a user1': did u create a linux account for this user before?
Am I suposed to do add the user to Linux and then to samba? I though the the line " add user script = /usr/sbin/useradd %u" would take care of adding both.

-- Figa

Ad 3) U need to create that user before adding him via smbpasswd. That userad script is used only when u want to use some NT Domain admin tools (its a product from MS which runs under windows and is used for remote windows domain server administration)