[Samba] home dirs

Martin Lucas martin.lucas at techconsult.de
Mon Oct 27 14:06:00 GMT 2003 

hi folks,

i have a problem with unified logons between my linux box and a nt 4.0
domain using winbind.
every user should have his own home-directory on the linux-box. if it
doesn't exist, it should be created automatically. i configured
/etc/pam.d/login as the following:
#%PAM-1.0

auth        required      /lib/security/pam_env.so
auth        sufficient    /lib/security/pam_winbind.so
auth        sufficient    /lib/security/pam_unix.so likeauth nullok
use_first_pass
auth        required      /lib/security/pam_deny.so

account     sufficient    /lib/security/pam_winbind.so
account     required      /lib/security/pam_unix.so

password    required      /lib/security/pam_cracklib.so retry=3
password    sufficient    /lib/security/pam_unix.so nullok use_authtok md5
shadow
password    required      /lib/security/pam_deny.so

session     required      /lib/security/pam_mkhomedir.so skel=/etc/skel/
umask=0022
# session     required      /lib/security/pam_mkhomedir.so
session     required      /lib/security/pam_limits.so
session     required      /lib/security/pam_unix.so 

the problem is, that if i try to login as domain-user the login is blocked.
in /var/log/messages the following message apears:
<snip>
	Oct 27 14:25:33 pc13-linux pam_winbind[2204]: user 'TCK+martin'
granted acces
	Oct 27 14:25:33 pc13-linux pam_winbind[2204]: user 'TCK+martin'
granted acces
	Oct 27 14:25:34 pc13-linux PAM-mkhomedir[2204]: unable to create
directory /etc/skel/ ----> very strange pam-mkhomedir mustn't create
/etc/skel
	Oct 27 14:25:34 pc13-linux login(pam_unix)[2204]: session opened for
user TCK+martin by (uid=0)
	Oct 27 14:25:34 pc13-linux login[2204]: Permission denied
</snip>

a login without automated directory creation works fine. but then the home
dir is set to '/'. 

does anonyone have an idea?

thanks in advance

martin



Martin Lucas
- ICT-Manager - 
TechConsult GmbH
European IT-Marketing-Research
Am Platz der Deutschen Einheit
Leipziger Strasse 35 - 37
34125 Kassel
Tel.:    +49-(0)561-8109-172
Fax:    +49-(0)561-8109-2972
e-mail: martin.lucas at techconsult.de

More information about the samba mailing list