W2K and samba PDC logon and remote home

[Samuli A Valo]

On Mon, 8 Oct 2001, Toomas Soome wrote:

> I was able to apply workaround and user can login now, but w2k will not
> remove profile (mandated by policy -- ntpolicy + w2k local group polcy),
> and every new login will create new copy of profile.....

Which is a major bad thing. We have about 500 machines and 4000 active
users (mostly students), so local copys of profiles are going to take way
too much space... Which means that windows installation will get broken
too often, and our administrators will have to run.

Basically this workaround is worse than keeping installations at sp1
level, and remotely installing hotfixes. This is how we do it now - but I
would really like to install sp2...

> sure. in our case I can use nfs mounts for this workaround. so user home
> will be mounted to logon server with nfs, samba will share profile with
> smb and home itself with smb from home server.

Like I thought...

> your case -- is your samba based file server joined to domain? My first
> idea was to suspect non-joined samba server -- we share smbpasswd with

Our samba server is domain member, using w2k domain controller as
authentication mechanism.

btw. How does samba convert uid's to SID? Is there any documentation /
where in the code should I look?

-- 
---------------------------------------------------------------------
-- Samuli Valo               |  email: Samuli.Valo at helsinki.fi     --
-- University of Helsinki    |  http://www.cs.helsinki.fi/u/savalo --
-- Department of CS          |  mobile: + 358 40 582 9016          --
---------------------------------------------------------------------