[Samba] WinXP cannot join domain (Samba PDC on FreeBSD)
Илья Шипицин
ilia at chel.skbkontur.ru
Tue Feb 25 13:18:40 GMT 2003
Dear Sirs,
I created user account "jupiter$" and did "smbpasswd -a -m jupiter".
That always worked for WinNT4, but WinXP refuses to join domain (I
applied registry "requiresignorseal" hack)
What do I need to add/remove from smb.conf ? I'm using FreeBSD.
smb.conf is attached
Regards, (Наилучшие пожелания)
Ilia Chipitsine (Илья Шипицин)
-------------- next part --------------
[global]
#
## read size = 2048
#
#
read bmpx = yes
# write cache size = 262144
######
## time offset = -60
invalid users = root
#
# ненулевой уровень отладки необходим для модуля авторизации smb_auth
#
debug level = 0
*
##winbind uid = 10000-20000
##winbind gid = 10000-20000
##winbind use default domain = yes
#debug level = 0
deadtime = 15
time server = true
workgroup = solar
netbios name = SOL
server string = AMBa Mumba Yumba Server
encrypt passwords = yes
#domain admin group = @nt_adm
admin users = ilia
#add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u
add user script = /usr/sbin/pw useradd %u -g machines -s /sbin/nologin -h -d /tmp
# if you want to automatically load your printer list rather
# than setting them up individually then you'll need this
printcap name = /etc/printcap
load printers = yes
# print command = /usr/bin/lpr -r -P %p %s
# lpq command = /usr/bin/lpq -P %p
# lprm command = /usr/bin/lprm -P %p %j
print command = /usr/local/libexec/printps %s
# It should not be necessary to spell out the print system type unless
# yours is non-standard. Currently supported print systems include:
# bsd, sysv, plp, lprng, aix, hpux, qnx
printing = bsd
# Uncomment this if you want a guest account, you must add this to /etc/passwd
# otherwise the user "nobody" is used
##log file = /var/log/log.smb
## it's strange, isn't it ?
##
log file = /dev/null
#log file = /var/log/log.smb
##
max log size = 16000
security = user
socket options = TCP_NODELAY
# Configure Samba to use multiple interfaces
# If you have multiple network interfaces then you must list them
# here. See the man page for details.
#
# 127.0.0.1/8 ???
#
interfaces = 192.168.100.1/24 192.168.200.1/24 127.0.0.1/8 192.168.9.1/24
# min protocol = NT1
local master = yes
os level = 255
domain master = yes
preferred master = yes
domain logons = yes
logon script = s.bat
# Where to store roving profiles (only for Win95 and WinNT)
# %L substitutes for this servers netbios name, %U is username
# You must uncomment the [Profiles] share below
logon path = \\%L\%U\profile
logon home = \\%L\%U\profile
name resolve order = lmhosts wins bcast
wins support = yes
# DNS Proxy - tells Samba whether or not to try to resolve NetBIOS names
# via DNS nslookups. The built-in default for versions 1.9.17 is yes,
# this has been changed in version 1.9.18 to no.
dns proxy = no
character set = koi8-r
client code page = 866
# Case Preservation can be handy - system default is _no_
# NOTE: These can be set on a per share basis
preserve case = yes
short preserve case = yes
default case = lower
#####################
# Be very careful with case sensitivity - it can break things!
case sensitive = no
#============================ Share Definitions ==============================
[homes]
comment = Home Directories
browseable = no
writable = yes
path = /home/%S
create mode = 0700
force create mode = 0700
directory mode = 0700
force directory mode = 0700
#
# 'netlogon' в том числе используется и для авторизации squid
#
[netlogon]
comment = Network Logon Service
path = /home/netlogon
valid users = @users
guest ok = yes
read only = yes
browseable = no
[09]
comment = 09
path = /home/09
valid users = @users
guest ok = yes
read only = yes
[cdrom]
comment = Plexwriter
path = /cdrom
valid users = @users
guest ok = yes
read only = yes
##[yurid]
## path = /home/yurid
## valid users = @users
## guest ok = yes
## read only = yes
# This one is useful for people to share files
[temp]
comment = Temporary file space
path = /home/temp
read only = no
public = yes
force group = users
create mode = 0777
force create mode = 0777
directory mode = 0777
force directory mode = 0777
valid users = @SKBusers,online
# A publicly accessible directory, but read only, except for people in
# the "staff" group
[pilot]
comment = Pilot group directory
path = /home/pilot
public = yes
write list = @pilot
force group = pilot
force user = kostya
create mode = 0775
force create mode = 0775
directory mode = 0775
force directory mode = 0775
valid users = @SKBusers
[files]
comment = File directory
path = /home/files
public = yes
write list = statt
force user = root
create mode = 0775
force create mode = 0775
directory mode = 0775
force directory mode = 0775
valid users = @SKBusers,neo,satay,sh,vanin,online
[thebat]
path = /home/thebat
public = yes
write list = @SKBusers
valid users = @SKBusers,vanin,online
force create mode = 0600
create mode = 0600
hide unreadable = yes
[mirc]
path = /home/mirc
valid users = @users
guest ok = yes
read only = yes
[prices]
comment = Prices directory
path = /home/prices
public = yes
write list = @techno, mdm
force group = techno
force user = root
create mode = 0775
force create mode = 0775
directory mode = 0775
force directory mode = 0775
valid users = @SKBusers
[documents]
comment = Document directory
path = /home/documents
public = yes
write list = @aup, at otdel_po,syv,irina,rifa,andy
force group = aup
create mode = 0775
force create mode = 0775
directory mode = 0775
force directory mode = 0775
valid users = @SKBusers
[buh]
comment = Buh directory
path = /home/mafia/buh
valid users = @buh
force group = buh
writable = yes
create mode = 0770
force create mode = 0770
directory mode = 0770
force directory mode = 0770
browseable = no
# write cache size = 0
[buhtech]
comment = Buh directory for techno
path = /home/mafia/buhtech
valid users = @techno
force group = techno
writable = yes
write list = @techno
create mode = 0770
force create mode = 0770
directory mode = 0770
force directory mode = 0770
browseable = no
# write cache size = 0
[buhka]
comment = Buh directory for UC
path = /home/mafia/buhka
valid users = mdm, sveta, nadin, lilya, msn, cat, vlv, natasha
force group = school
writable = yes
write list = mdm, sveta, nadin, lilya, msn, cat, vlv, natasha
create mode = 0770
force create mode = 0770
force user = root
directory mode = 0770
force directory mode = 0770
browseable = no
# write cache size = 0
[kodeks]
comment = no comment
path = /home/kodeks
valid users = @users
force group = users
writable = yes
write list = mdm
create mode = 0644
force create mode = 0644
force user = root
directory mode = 0755
force directory mode = 0755
[kontur]
comment = Kontur directory
path = /home/kontur
valid users = @buhsoft,ilia, irina,cea,pof,glu,syv,rifa,andy
write list = mdm, kostya, cea
create mode = 0775
force create mode = 0775
force user = kostya
directory mode = 0775
force directory mode = 0775
[techno]
comment = Techno group directory
path = /home/techno
public = yes
valid users = @techno,satay
write list = @techno
force group = techno
create mode = 0775
force create mode = 0775
directory mode = 0775
force directory mode = 0775
[school]
comment = Learning center directory
path = /home/school
public = yes
write list = @school, julya
force group = school
create mode = 0775
force create mode = 0775
directory mode = 0775
force directory mode = 0775
valid users = @school, stage, julya
[soft]
comment = Soft directory
path = /home/soft
public = yes
write list = @otdel_po
force group = users
force user = kostya
create mode = 0775
force create mode = 0775
directory mode = 0775
force directory mode = 0775
valid users = @otdel_po,andy, rifa
[aup]
comment = AUP directory
path = /home/aup
public = no
valid users = @aup
write list = @aup
browsable = no
force group = aup
create mode = 0770
force create mode = 0770
directory mode = 0770
force directory mode = 0770
[marketing]
path = /home/marketing
valid users = @aup, @SKBusers
write list = @aup,julya
force group = aup
create mode = 0770
force create mode = 0770
directory mode = 0770
force directory mode = 0770
[act]
comment = ACT directory
path = /home/mafia/act
public = no
valid users = @center_act, at soft_act, at uc_act, at techno_act
write list = @center_act, at soft_act, at uc_act, at techno_act
browsable = yes
force group = act_users
create mode = 0770
force create mode = 0770
directory mode = 0770
force directory mode = 0770
[backup]
comment = BackUp's Service
path = /home/backup/
valid users = mdm,kostya
write list = mdm
public = yes
writable = yes
create mode = 0700
force create mode = 0700
force user = root
directory mode = 0700
force directory mode = 0700
[received]
comment = experimental faxing thing
valid users = @users
path = /var/spool/fax/incoming
writeable = yes
guest ok = no
write list = root
[avp]
comment = no comment
valid users = @users
path = /home/AVP
read only = yes
guest ok = no
[yurid]
valid users=@users
path = /home/yurid
read only = yes
guest ok = yes
More information about the samba
mailing list