The "homes" folder in Samba4?

Aaron E. ssureshot at gmail.com
Wed Feb 8 12:51:17 MST 2012 

I decided to go with a central logon script that will pretty much set 
the user up with said home folder, share mappings and printers based on 
groups.. With the the Home folder set up as 770 and root:users ownership 
and the base share permissions when the user logs in it will check if 
folder exists if not it will create then assign the administrators 
access, even though the user created the folder and has access I also 
set perms for them for sanity's sake I guess. then map the drive as 
their home folder..

I've been just adding items as I go.

On 02/08/2012 02:33 PM, Ricky Nance wrote:
>  From what I can tell this behavior mimics AD completely. I haven't seen
> many variables that can be used in the smb.conf. I understand completely
> what you are saying as that is how my Samba3 install was [homes] had a path
> of /home/%U so I could map to \\server\homes or \\server\%username% with
> the same results. Do understand that windows has builtin variables that
> will handle almost everything that Samba3 could. Don't attempt to put every
> name in the samba4 config, instead fix your permissions on your /homes
> share. It may take a bit of time to get everything sorted out, but after
> all is said and done it should be as secure. As far as the admin tool, any
> windows based ones that are built with AD in mind should take care of it,
> any linux based ones may need to be fixed to work with Samba4.
>
> On Wed, Feb 8, 2012 at 12:52 PM, Charles Tryon<charles.tryon at gmail.com>wrote:
>
>>
>> While it clearly works to simply export a "home" directory and then do
>> whatever is necessary to create the home directories, this isn't quite what
>> I was looking for.  Previously in Samba3, you could create a "homes"
>> directory which would then be mapped to the user's name.  For example, if a
>> user named "billy" mapped to the share: \\samba\billy (or \\samba\%U), the
>> Samba server actually mapped to the home directory: /home/billy.  It was a
>> shortcut for creating name specific shares without needing to put every
>> single name in the config.  Effectively, this seems to be the same as
>> sharing the /home directory and mapping to the person's name under that
>> folder: \\samba\home\billy.  The difference may be in how the admin tool
>> does or does not automatically create the home dir with the correct
>> permissions at the time the user is created.
>>
>> On Wed, Feb 8, 2012 at 8:30 AM, Ricky Nance<
>> ricky.nance at weaubleau.k12.mo.us>  wrote:
>>
>>> I think that is by design, if you look around there are some vb scripts
>>> that will create the user and homedir and set the permissions, but if you
>>> create the user in AD management, their home dir doesn't get created until
>>> you modify the user (you can highlight several users and do them all at
>>> once). When AD Management creates the home dir, it gets the correct
>>> permissions.
>>>
>>> On Tue, Feb 7, 2012 at 7:44 AM, Aaron E.<ssureshot at gmail.com>  wrote:
>>>
>>>> Ricky,
>>>>
>>>> I'm just curious since I was using logon script to create the home
>>>> directory's it was creating them with the proper permissions for the
>>> user
>>>> to access. With this method it seems that I have to manually modify the
>>>> owner of the directory after user creation. Am I missing something or is
>>>> this by design?
>>>>
>>>> Thanks
>>>> Aaron
>>>>
>>>>
>>>> On 02/06/2012 05:38 PM, Ricky Nance wrote:
>>>>
>>>>> Here is how my homes is setup:
>>>>>
>>>>> [homes]
>>>>>          directory_mode: parameter = 0700
>>>>>          read only = no
>>>>>          path = /home
>>>>>          csc policy = documents
>>>>>
>>>>>
>>>>> I map that by using net use h: \\server\homes\%USERNAME%
>>>>>
>>>>> One thing this allows is for the Administrator user to set permissions
>>> for
>>>>> any and all the folders, when you create a user in AD Management, if
>>> you
>>>>> add \\server\homes\%USERNAME% to the home directory AD will create the
>>>>> directory for the user.
>>>>>
>>>>>
>>>>> **** I always forget to hit reply to all !!!!
>>>>>
>>>>> On Mon, Feb 6, 2012 at 3:17 PM, Charles Tryon<charles.tryon at gmail.com
>>>> **
>>>
>>>>> wrote:
>>>>>
>>>>>   Does Samba4 support the special user mapping functionality of the
>>> "homes"
>>>>>> directories, or do you still need to implement that with a Samba3
>>> server
>>>>>> joined to the domain?
>>>>>>
>>>>>>
>>>>>> --
>>>>>>     Charles Tryon
>>>>>> ______________________________**______________________________**
>>>
>>>>>> _____________
>>>>>>   “Risks are not to be evaluated in terms of the probability of
>>> success,
>>>>>> but in terms of the value of the goal.”
>>>>>>                 - Ralph D. Winter
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>>
>>>>>
>>>>
>>>
>>>
>>> --
>>>
>>
>>
>>
>> --
>>      Charles Tryon
>> _________________________________________________________________________
>>    “Risks are not to be evaluated in terms of the probability of success,
>> but in terms of the value of the goal.”
>>                  - Ralph D. Winter
>>
>>
>
>
> --
>

More information about the samba-technical mailing list