[Samba] profiles

Neil Muller neil at neologix.net
Wed Jun 19 05:09:03 GMT 2002 

To get roaming profiles working (w2k not xp) I had to (in addition to
the settings you've got in smb.conf):

* make sure the profiles directory was readable and writable by all
samba users;

* make sure all the profiles are owned (user and group) by the
appropriate samba user (our user's profiles were moved across from a
ghost copy of the original NT PDC);

* make sure all the netlogon scripts are executable by the appropriate
user (I have a separate script for each domain user). I've also made the
scripts owned (user and group) by their samba user;

The other thing I noticed (probably not significant) is that the
prototype smb.conf installed with samba uses a [Profiles] share, not a
[profiles] share and a %U instead of your %u so the path to the location
of the roaming profiles would be \\%N\Profiles\%U rather than the
\\%N\profile\%u. Don't know how significant the change in case is but
when something isn't working I'm usually willing to try anything that
seems plausible :-)

Hope this helps,

Neil




On Mon, 2002-06-17 at 11:14, lorac wrote:
> I have the computers joined to the domain (running XP), but if i try to log 
> into the domain i get a msg about the roaming profile is not available (at 
> the bottom it says details - access is denied) and then tries to load a 
> local profile which it can not load either.  I can access both the netlogon 
> share and the profile share when i log into just the computer itself.  The 
> netlogon share has the login script and the file config.POL
> I have read different howto's and faq's, but can't seem to find the answer.
> 
> My conf file is as follows:
> 
>   Samba config file created using SWAT
> # from pixel (192.168.1.244)
> # Date: 2002/06/17 09:03:47
> 
> # Global parameters
> [global]
>          workgroup = CAT
>          netbios name = PIXEL
>          server string = Samba Server
>          encrypt passwords = Yes
>          passwd program = /usr/bin/passwd
>          username map = /usr/local/samba/lib/users.map
>          unix password sync = Yes
>          log file = /usr/local/samba/var/log.%m
>          max log size = 50
>          socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 
> IPTOS_THROUGHPUT
>          domain admin group = root matthew @adm
>          add user script = /usr/local/samba/bin/add_user %u
>          delete user script = /usr/local/samba/bin/del_user %u
>          logon script = logon.bat
>          logon path = \\%N\profiles\%u
>          logon drive = h:
>          logon home = \\homeserver\&u
>          domain logons = Yes
>          os level = 65
>          preferred master = True
>          domain master = True
>          hosts allow = 192.168.1. 127.
>          short preserve case = No
>          share modes = No
> 
> [profiles]
>          path = /usr/local/samba/export/ntprofile
>          read only = No
>          create mask = 0600
>          directory mask = 0700
> 
> [netlogon]
>          path = /usr/local/samba/lib/netlogon
>          write list = root @adm
>          locking = No
> 
> 
> -
> "Violence is the last refuge of the incompetent." - Salvor Hardin
> 
> ICQ UIN 2123136 Get ICQ <http://www.icq.com>http://www.icq.com

More information about the samba mailing list