[Samba] Automatic creation of users home directories - problem with username case

Dmitrijs Demidovs dmitrijs.demidovs at datakom.lv
Tue Oct 23 05:32:51 MDT 2012 

Hello list,

I have a problem with Samba and automatic creation of user home directories.

There is a Win2008R2 AD and Samba are successfully joined to domain. Samba is running on CentOS 6.3 32-bit.
Domain users can access Samba without problems. We decided to use home directories and mount them as network H: disk, so user can store it's data there.

The problem is that WinXP users after restart can logon to AD using any form of logon name - i.e.
"Name.Surname"
"name.surname"
"NAME.SURNAME"

And Samba is automatically creating home directory for each form of logon name variation:
/home/Name.Surname
/home/name.surname
/home/NAME.SURNAME

So user John.Doe one morning will see that all content from it's H: disk is gone just because he logon in AD using different variation of his account name.

Have anyone the same problems with home directories? 
Is there any solution?


We used this article as a guide:
wiki.samba.org/index.php/Samba_%26_Active_Directory

And I am unable to manage pam_mkhomedir.so to working - that's because "root preexec " shell script are used.



Our config:
---
[global]

   workgroup = DOMAINNAME
   realm = DOMAINNAME.LOCAL
   security = ads
   idmap uid = 10000-20000
   idmap gid = 10000-20000
   winbind separator = +
   template homedir = /home/%U
   template shell = /sbin/nologin
   winbind use default domain = true
   winbind offline logon = false
   log file = /var/log/samba/log.%m
   max log size = 50
   passdb backend = tdbsam
   preferred master = no
   encrypt passwords = yes
   winbind enum users = Yes
   winbind enum groups = Yes
   winbind nested groups = Yes


[homes]
   comment = Home Direcotries
   valid users = %S
   read only = No
   browseable = No
   path = /home/%S
   root preexec = /var/lib/samba/scripts/mksambahomedirs.sh %S
---


mksambahomedirs.sh"
---
#!/bin/bash

if [ ! -d /home/$1 ]; then
        mkdir /home/$1
        chmod g+s /home/$1
        chown $1:"domain admins" /home/$1
        chmod 770 /home/$1
        /usr/bin/setfacl -m g:"domain admins":rwx /home/$1
        /usr/bin/setfacl -m u:"$1":rwx /home/$1
fi
exit 0
---



Thank you in advance for any help!

More information about the samba mailing list