[Samba] Error loading profiles -- Samba 3.02a & LDAP

John Arthur lists at davey.net.au
Sat Apr 24 00:22:08 GMT 2004


Hi,

I'm setting up Samba 3.0.2a & ldapsam in my home lab and everythin appears
to be working correctly except for profiles.

Using

Samba 3.02a
openldap-2.1.22
smbldap-tools-0.8.4

When a user 'debra' tries to logon from a XP system that has joined the
domain she gets the following error message

"Windows did not load your roaming profile and is attempting to log you on
with your local profile. Changes to the profile will not be copied to the
server when you logoff. Windows did not load your profile because a server
copy of the profile folder already exists that does not have the correct
security. Either the current user or the Administrator's group must be the
owner of the folder. Contact your network administrator."

But a server copy of the profile does not exist. It is created when she
tries to log on.

The profile folder  before she tries to logon
[root at rho profiles]# ls -la
total 12
drwxr-xrwt    3 root     Domain Admins     4096 Apr 24 09:09 .
drwxr-xr-x    4 root     Domain Admins     4096 Apr 22 23:04 ..


The profile folder after she's logged on.
[root at rho profiles]# ls -la
total 12
drwxr-xrwt    3 root     Domain Admins     4096 Apr 24 09:09 .
drwxr-xr-x    4 root     Domain Admins     4096 Apr 22 23:04 ..
drwx------    2 debra    Domain Users     4096 Apr 24 09:09 debra


smb.conf

logon path = \\RHO\profiles\%U
[profiles]
        # chmod 1757 /opt/domain/profiles
        path = /opt/domain/profiles
        writeable = yes
        browseable = no
        create mask = 0600
        directory mask = 0700
        profile acls = yes
##        csc policy = disable
        # next line is a great way to secure the profiles
        force user = %U
        # next line allows administrator to access all profiles
#        valid users = %U "Domain Admins"



[root at rho samba]# pdbedit -Lv debra
Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=FOXY))]
smbldap_open_connection: connection opened
ldap_connect_system: succesful connection to the LDAP server
Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=FOXY))]
smbldap_open_connection: connection opened
ldap_connect_system: succesful connection to the LDAP server
init_sam_from_ldap: Entry found for user: debra
Unix username:        debra
NT username:          debra
Account Flags:        [U          ]
User SID:             S-1-5-21-1668551638-3811399965-3946081115-3002
Primary Group SID:    S-1-5-21-1668551638-3811399965-3946081115-513
Full Name:            Debra Smith
Home Directory:       \\RHO\debra
HomeDir Drive:        H:
Logon Script:         ""
Profile Path:         \\RHO\profiles\debra
Domain:               FOXY
Account desc:         Debra Smith
Workstations:
Munged dial:
Logon time:           0
Logoff time:          Sat, 14 Dec 1901 07:15:51 GMT
Kickoff time:         Sat, 14 Dec 1901 07:15:51 GMT
Password last set:    Fri, 23 Apr 2004 19:37:29 GMT
Password can change:  0
Password must change: Thu, 22 Jul 2004 19:37:29 GMT



Everything else is working.  Debra can logon and access all shares including
her home share it's only the profiles that are not working correctly.


Regards John








More information about the samba mailing list