[Samba] Win98 policies,profiles and logon scripts
joe.morin at dominiondiagnostics.com
joe.morin at dominiondiagnostics.com
Thu Feb 6 23:22:32 GMT 2003
John,
Thanks for the help! It's working!
In my logon script for Win2K users I had a line something like this:
NET USE H: \\server\%username%
And this wouldn't run in win98. Changing it to what you suggested:
NET USE H: /HOME
works just fine.
I have the NET TIME command running successfully in win98 also.
I do have a question about the permissions required to set the system time
on Win2k and WinXP though...
Exactly WHAT permissions need to be set? And is this a registry edit? I
don't see where this can be configured using the poledit.exe to create a
domain policy. (Yes, I'm a unix guy NOT a windows guy, but I'm learning,
unfortunately............)
Joseph Morin
Dominion Diagnostics
John H Terpstra
<jht at samba.org>
To
02/06/2003 02:37 joe.morin at dominiondiagnostics.com
PM cc
Michael Paarmann <mp at squit.de>, ""
<samba at lists.samba.org>
Subject
Re: [Samba] Win98 policies,profiles
and logon scripts
On Thu, 6 Feb 2003 joe.morin at dominiondiagnostics.com wrote:
> John,
> Thanks for the prompt response.
> Here's what I have.....
>
> 1. In TCP/IP is WINS IP Addr. set to the IP Addr. of your samba server?
>
> Yes, using winipcfg, the Primary WINS Server is set to my samba
> server
>
> 2. Have you installed the Client for Microsoft Networks?
> - configured it to 'Log onto Windows NT Domain'?
> - set the correct domain name
> Yes, Client for Microsoft Networks is installed, configured to log
> onto Windows NT Domain, yes, set to the correct domain.
>
> but what about the 'Network logon options' ? I have tried both the
> 'Quick Logon' and 'Logon and restore network connections'.
>
> 3. Set the 'Client for Microsoft Networks' as the 'Primary Network
Logon'?
> - Yes
>
>
> 4. Set the workgroup name (under 'Identification') to the same as your
> domain name? - Yes
>
>
> FYI, System is Win98 Second edition.
Ok.
> Also, in a command window using 'net use' I can see
> \\sambaserver\username
> \\sambaserver\NETLOGON
> but neither are mapped to a drive.
> I can also manually map drives using the net use command.
Do you have statements in your logon script to attache them? If so, what
are they?
You should have somethings like:
net use h: /Delete
net use h: \\server\homes /yes
The above \\server\homes implies of course your samba server's name, and
the 'homes' info automatically translates to the users' homedir.
Alternatively you could do:
net use h: /D
net use H: /HOME
You might also like to forcibly close the netlogon connection by:
net \\server\netlogon /D
And set your workstation time clock by:
net time \\server /set /yes
PS: For this to work on NT/2K/XP you need to set appropriate security
settings as administrator on the workstation.
>
> I also see a 'Windows NT logon script' popup window at logon, a command
> window also pops up but immediately closes and I cannot see any of the
> commands (if any) that are being executed.
Well, this means that your logon script is being run. If you want to see
the commands that have been executed you need to put a pause statement in
the logon script. That way you get to hit enter to close the logon box -
and thus you can see what the output of your commands was.
- John T.
>
> thank you for all the help.
>
> Joseph Morin
> Dominion Diagnostics
>
>
>
>
> John H Terpstra
> <jht at samba.org>
>
To
> 02/06/2003 01:22 joe.morin at dominiondiagnostics.com
> PM
cc
> Michael Paarmann <mp at squit.de>, ""
> <samba at lists.samba.org>
>
Subject
> Re: [Samba] Win98
policies,profiles
> and logon scripts
>
>
>
>
>
>
>
>
>
>
> On Thu, 6 Feb 2003 joe.morin at dominiondiagnostics.com wrote:
>
> > Here's my smb.conf file.
>
> Joe,
>
> Looks OK. How are your Win98 configured?
>
> 1. In TCP/IP is WINS IP Addr. set to the IP Addr. of your samba server?
>
> 2. Have you installed the Client for Microsoft Networks?
> - configured it to 'Log onto Windows NT Domain'?
> - set the correct domain name
>
> 3. Set the 'Client for Microsoft Networks' as the 'Primary Network
Logon'?
>
> 4. Set the workgroup name (under 'Identification') to the same as your
> domain name?
>
> - John T.
>
> > Thanks for the help!
> >
> > # Global parameters
> > [global]
> > workgroup = DOMAINNAME
> > netbios name = SERVERNAME
> > security = USER
> > hosts allow = 192.168.1., 192.168.0., 127.
> > name resolve order = host bcast
> > wide links = No
> > follow symlinks = No
> > socket options = TCP_NODELAY IPTOS_LOWDELAY
> > invalid users = bin daemon adm sync shutdown halt mail
> news
> > time server = yes
> > encrypt passwords = yes
> > unix password sync = yes
> > passwd program = /usr/bin/passwd %u
> > passwd chat = *New*password* %n\n *retype*new*password* %n\n
> > *passwd:*all*authentication*tokens*updated*successfully.*
> > os level = 255
> > wins support = yes
> > local master = yes
> > preferred master = yes
> > domain master = yes
> > domain logons = yes
> > Domain Admin group = @domainadmin
> > logon home = \\%L\%U\.profile
> > logon drive = H:
> > logon path = \\%L\Profiles\.%U
> > logon script = %G.bat
> > add user script = /usr/sbin/useradd -g 201 -d /dev/null -s
> > /bin/false -M %u
> >
> > #
> > # PDC shares
> > #
> >
> > [netlogon]
> > comment = Network Logon Service
> > path = /home/samba/netlogon
> > browseable = no
> > writable = no
> > share modes = no
> >
> > [Profiles]
> > path = /home/samba/profiles
> > browseable = yes
> > writeable = yes
> > force create mode = 0660
> > force directory mode = 0770
> >
> >
> > #
> > # User H drives
> > #
> > [homes]
> > read only = No
> > create mask = 0644
> > browseable = No
> >
> > #
> > # Shares
> > #
> > [public]
> > comment = Public Share
> > path = /data/public
> > writeable = yes
> > create mask = 0664
> > directory mask = 0775
> > guest ok = yes
> >
> > #
> > # End config file
> > #
> >
> >
> > Joseph Morin
> > Dominion Diagnostics
> >
> >
> >
> > Michael Paarmann
> > <mp at squit.de>
> >
> To
> > 02/06/2003 12:29
joe.morin at dominiondiagnostics.com
> > PM
> cc
> > samba at lists.samba.org
> >
> Subject
> > Re: [Samba] Win98
> policies,profiles
> > and logon scripts
> >
> >
> >
> >
> >
> >
> >
> >
> >
> >
> > Hi !
> >
> > Please post your smb.conf . It may help to solve your problem.
> >
> > Regards,
> > Michael
> >
> >
> > At 12:10 06.02.2003 -0500, you wrote:
> >
> >
> >
> >
> > >I am running Samba 2.2.3a and have my users logging into the 'samba
> > >domain'. My WinNT and WinXP users are working fine with roaming
> profiles
> > >and policies. My problem is my Win98 users. The logon script doesn't
> > seem
> > >to be working, i.e. when I log onto a Win98 machine (logging into the
> > >domain), the logon script doesn't run. I have opened up the
permissions
> > to
> > >the logon script (for testing) and that doesn't seem to help, it's
still
> > >not running.
> > >
> > >Also, I have implemented a domain policy to 'exclude directories in
> > roaming
> > >profiles', namely temporary internet files, cookies, etc. This policy
> > >works fine for WinNT but doesn't seem to work for Win98, is this a
> > >'feature' of WinNT and not Win98? I did create separate policies for
> > WinNT
> > >(ntconfig.POL) and Win98 (config.POL). Other settings within the
policy
> > >ARE working, for example, restricting the screen saver tab on the
> display.
> > >
> > >Joseph Morin
> > >Dominion Diagnostics
> > >
> > >--
> > >To unsubscribe from this list go to the following URL and read the
> > >instructions: http://lists.samba.org/mailman/listinfo/samba
> >
> >
> >
> >
>
> --
> John H Terpstra
> Email: jht at samba.org
>
>
--
John H Terpstra
Email: jht at samba.org
More information about the samba
mailing list