[Samba] 3.0alpha22 does not execute "add user script" ?

John H Terpstra jht at samba.org
Fri Mar 21 14:21:28 GMT 2003 

On Fri, 21 Mar 2003, A. S. wrote:

> Hi
>
> The 3.0alpha22 does not seem to execute the "add user script" when running
> as security = domain. The same configuration used to work fine with samba
> 2.2.7

Correct. When you configure samba with "security = domain" you re telling
it to be a domain member server. Domain members do NOT provide the
netlogon service nor do they partake in domain user management services.
Both these services belong to the domain control arhitecture.

To do what you want you will need PAM and Winbind support.

>
> I am making samba as the member of the domain and have users store their
> files to the home shares on the samba, so that I need to have "add user
> script" to make home dirs for the users.

See above. To auto-create home directories you will need to configure
pam_mkhomedir.so support also.

>
> I am running with winbind and it is fetching the user/group name correctly
> from DC.

Good, so the missing magic is pam_mkhomedir.so.

>
>
> Is there a patch for this bug?

Please patch your /etc/pam.d/{logon,samba} files and introduce them to
pam_mkhomedir.so.


- John T.

>
> Thanks alot in advance.
>
>
> [global]
> add user script = /mybin/bin/add_user %u
> admin users = myadmin
> create mask = 0777
> delete user script = /mybin/bin/delete_user %u
> directory mask = 0777
> encrypt passwords = yes
> force create mode = 0
> force directory mode = 0
> guest account = nobody
> load printers = no
> log file = /var/log/samba/log.%m
> log level = 1
> max log size = 100
> passwd program = /usr/bin/passwd %u
> password server = soserver
> security = domain
> server string = files
> socket options = SO_KEEPALIVE IPTOS_LOWDELAY TCP_NODELAY SO_SNDBUF=8192
> SO_RCVBUF=8192
> template homedir = /vg01/home/%D/%U
> template shell = /bin/false
> unix password sync = yes
> username map = /etc/samba/smbusers
> winbind gid = 45000-65000
> winbind uid = 45000-65000
> wins support = no
> workgroup = HOME
>
> [homes]
> comment = Home Directory
> # valid users = %S
> browseable = no
> writable = yes
>
>
>
>
>

-- 
John H Terpstra
Email: jht at samba.org

More information about the samba-technical mailing list