NT PDC /and/ fileserving on the same Unix machine?

John Weber jweber at math.cudenver.edu
Tue Aug 15 18:45:17 GMT 2000 

Hi,
I'm using tng2.6 tarball.
referring to item 1) below, I have an NT box that logs into the domain OK
but when I log into the local NT machine and try to access the shares on
the samba box, I get prompted for username and password and the ones that
work for domain logon don't work here. I've attached my smb.conf.

Is this kind of file sharing to be expected? If so, what's the trick?

-- 
John S. Weber

System Administrator
Center for Computational Mathematics
University of Colorado at Denver
Phone: (303)556-5394 Fax: (303)556-8550
jweber at math.cudenver.edu
http://www-math.cudenver.edu/~jweber

On Wed, 16 Aug 2000, Elrond wrote:

> On Tue, Aug 15, 2000 at 04:43:04PM +1000, Lars Kneschke wrote:
> [...]
> > > Yeah, It's possible, but I'm not sure how successful others have been.
> > > Lars, do you think that this needs to be changed?
> > Yes, i will update this topic.
> > 
> > Cu
> 
> There are three ways to go:
> 
> 1) Use TNG on its own.
> 
>    This works for most people and is a reasonable way to
>    go. The fileserving code is quite up to date, but
>    doesn't have all the latest bells and whistles.
> 
> 2) Use TNG and smbd/nmbd from HEAD
> 
>    I guess, this one is referred to above.
> 
>    I don't know, wether this still works or not, some
>    reports make me feel, that this isn't working any
>    more.
> 
>    So I currently don't advise this way.
> 
> 3) Use a complete TNG and a complete 2.0.x-install on the
>    same machine (or even different machines).
> 
>    The 2.0.x-samba should be a domain-member of the domain. 
>    The only share, you need on the PDC is netlogon (you may
>    put the policies in there.) Both sambas should be on
>    different IP adresse and must have different netbios
>    names, I also highly suggest installing them in
>    different trees.
> 
>    This is a more complex way than 1, but you get high
>    quality fileserving and a PDC. And printing (if you need
>    it) might be lots easier to configure (don't ask me on
>    printing though).
> 
> In your case, you could possibly even leave the current
> samba running (just making it a domain-member at the end).
> and install the PDC on a different netbios-name (nobody
> realy sees the name of the pdc, they only see the
> domain-name... [some people here even don't know, where the
> pdc is physicaly located, also they have stood next to
> it ;-)])
> 
> 
>     Elrond
> 

-------------- next part --------------
[global]

  printcap name = /etc/printcap
   load printers = yes

#NetBIOS name isn't needed if it's the same as the hostname
#netbios name = MYSAMBAPDC
workgroup = JW
hosts allow = 132.194.200.42 132.194.200.38 132.194.200.39\
 132.194.200.41 132.194.200.44 132.194.200.40

#flat files that map Unix groups to NT type groups.
#these files take the form unix_group = `Windows NT group''
domain group map = /opt/samba/tng-2.6/private/domaingroup.map
domain alias map = /opt/samba/tng-2.6/private/domainalias.map

#Domain controllers use user security and we need encrypted
#passwords (see ENCRYPTION.txt)
security = user
domain logons = yes
encrypt passwords = yes

#And in order for us to be *sure* to win browser elections
os level = 65
domain master = yes
preferred master = yes
local master = yes

#WINS is the equivalent of DNS for NetBIOS.
wins support = yes
time server = yes

#the next lines are equivalent to the various profile details
#found in NT's User Manager
logon script = login.bat
logon drive = U:
logon home = \\CEORA\%U
logon path = \\CEORA\profile\%U

#share all home directories
[homes]
browseable = no
writable = yes
comment = Users' home directories

#set up netlogon share for system policies and login scripts
[netlogon]
path = /opt/samba/tng-2.6/netlogon
writable = no
guest ok = no
comment = PDC netlogon share

#the profiles share
#to create automatic subdirs for the different users
#chmod 1777 /opt/samba/tng-2.6/profile
[profile]
path = /opt/samba/tng-2.6/profile
writeable = yes

#a public share
[public]
path = /opt/samba/tng-2.6/public
browseable = yes
public = yes
comment = Public share

#printers
[printers]
        comment = All Printers
        path = /var/spool/samba
        print ok = Yes
        browseable = No

More information about the samba-ntdom mailing list