[Samba] Newbie Question: Samba / winbind / W2K Server

_pkliste pkliste at schlund.de
Tue Apr 9 11:25:02 GMT 2002 

Hi there,
here's what I have:
1) Many Windows-Clients
2) a linux box (Suse 7.3)
3) a W2K server (Exchange, in fact)
here's what I want:
1) Windows-Clients using samba shares on the linux box
2) Not having to create user accounts on the linux box
3) Letting the w2k server do the authentication
here's what I've done:
1) downloaded/unpacked Samba 2.2.3a
2) ./configure --with-pam --with-pam_smbpass --with-winbind
3) make, make install
4) created smb.conf
[global]
   workgroup = MYDOMAIN
   netbios name = samba
   encrypt passwords = yes
   comment = Samba Server
   printing = bsd
   printcap name = /etc/printcap
   load printers = no
   log file = /var/log/smbdlog
   log level = 4
   max log size = 5000
;  case sensitive = yes
   short preserve case = yes
   preserve case = yes
   lock directory = /usr/local/samba/var/locks
   locking = yes
   security = domain
   password server = MARVIN
   socket options = TCP_NODELAY
   interfaces = eth0
   local master = yes
   os level = 1
   domain master = yes
   preferred master = yes
   wins support = yes

   winbind separator = +
   winbind uid = 10000-30000
   winbind gid = 10000-30000
   winbind enum users = yes
   winbind enum groups = yes
   template shell = /bin/false
   template homedir = /home/samba/%D/%U


[homes]
   comment = Home Directories
   public = no
   browseable = no
   writable = yes
   path=/home/samba/MYDOMAIN/%S
   valid users = %S
   create mask = 0700
   force user = %S
[inst]
   comment = Installationskram
   path = /home/samba/inst
   public = yes
   writable = yes
   browseable = yes
   printable = no
   write list = @users
   create mask = 0770
   directory mask = 0770
   force group = users
[spass]
   comment = Spass
   path = /home/samba/spass
   public = yes
   writable = yes
   browseable = yes
   printable = no
   write list = @users
   create mask = 0770
   directory mask = 0770
   force group = users

5) done all the things in winbindd documentation
6) smb, nmbd and winbind start up fine
7) when started interactively, winbindd shows a very interesting line
'IPC$ connections are done anonymously'
8) getent passwd shows only local users; wbinfo -u says 'error looking up domain users' and:
The w2k server log shows 
	Geöffnetes Objekt:
 	Objektserver:	Security Account Manager
 	Objekttyp:	SAM_SERVER
 	Objektname:	CN=Server,CN=System
 	Neue Handlekennung:	-
 	Vorgangskennung:	{0,2595960835}
 	Prozesskennung:	264
 	Primärer Benutzer:	MARVIN$
 	Primäre Domäne:	MYDOMAIN
 	Primäre Anmeldekennung:	(0x0,0x3E7)
 	Clientbenutzername:	ANONYMOUS-ANMELDUNG
 	Clientdomäne:	NT-AUTORITÄT
 	Clientanmeldekennung:	(0x0,0x7312)
 	Zugriffe		MAX_ERLAUBT 
			
 	Berechtigungen		-
(sorry, this is in german)

I see the spass and inst shares, but i cannot copy files there. I cannot map a home directory.

Anyone with a working configuration who can help me out?

---------------------------------------------------------
| Peter Koch                      Schlund & Partner AG  | 
| mailto:peter.koch at schlund.de    Erbprinzenstr. 4-12   | 
| T. 0721-91374-687               D-76133 Karlsruhe     | 
| F. 0721-91374-20                                      | 
---------------------------------------------------------

More information about the samba mailing list