[Samba] Re: Samba setup with Winbind connecting to NT4 PDC - Login is Slow...

Igor Belyi sambauser at katehok.ac93.org
Wed Oct 20 01:38:08 GMT 2004 

I think you will be interested in recent Andreas's experience with KDE:
http://lists.samba.org/archive/samba-technical/2004-October/037685.html

Igor

Eric Murray wrote:
> 
>> -|  PDC - Login isnow Slow...
>> -|  -|      winbind enum users = yes
>> -|      winbind enum groups = yes
>> remove those two...
>>
>> Mit freundlichem Gruß,
>>
>>  
>>
> Ok, I removed those 2 lines and tried again... It still took at least 2 
> minutes to login as it just "Sit's" on the KDE welcome screen with 
> nothing and then all of a sudden up pops the KDE login box and proceeds 
> as normal.
> 
> Questions :
> - Is there a chance that becuase I'm on a trusted Domain with 3 
> locations that it is trying to Syncronize with the PDC's on the 3 
> domains on startup? Causing it to be slow like that?
> - Is there a chance that PAM has something to do with it?  My SMB shares 
> are all working and it authenticates with the PDC correctly so I would 
> rather not mess with pam as I don't know what I'm doing with it.
> 
> Here is my current SMB.CONF and NSSWITCH.CONF files again now.
> 
> -------------
> SMB.CONF
> -------------
> # version at /usr/share/doc/packages/samba/examples/smb.conf.SUSE
> # Date: 2004-09-16
> [global]
>    workgroup = SHELTER
>    printing = cups
>    printcap name = cups
>    printcap cache time = 750
>    cups options = raw
>    printer admin = @ntadmin, root, administrator
>    username map = /etc/samba/smbusers
>    map to guest = Bad User
> ###    include = /etc/samba/dhcp.conf
> #    logon path = \\%L\profiles\.msprofile
> #    logon home = \\%L\%U\.9xprofile
> #    logon drive = P:
> # My additions...
>    security = DOMAIN
>    encrypt passwords = yes
>    password server = shelternt1 sriesrv2
>    obey pam restrictions = yes
>    socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
>    wins server = shelternt1 sriesrv2
>    dns proxy = no
>    netbios name = sriemailsrv
>    log level = 1
>    winbind separator = +
>    winbind uid = 10000-20000
>    winbind gid = 10000-20000
>    winbind cache time = 15
> #    winbind enum users = yes
> #    winbind enum groups = yes
>    template homedir = /home/%U
>    template shell = /bin/bash
>    winbind use default domain = yes
>    name resolve order = wins lmhosts host bcast
> [pdf]
>    comment = PDF creator
>    path = /var/tmp
>    printable = Yes
>    print command = /usr/bin/smbprngenpdf -J '%J' -c %c -s %s -u '%u' -z %z
>    create mask = 0600
> [printers]
>    comment = All Printers
>    path = /var/tmp
>    printable = Yes
>    create mask = 0600
>    browseable = No
> [print$]
>    comment = Printer Drivers
>    path = /var/lib/samba/drivers
>    write list = @ntadmin root
>    force group = ntadmin
>    create mask = 0664
>    directory mask = 0775
> 
> [Public]
>        comment = Public Folder
>        path = /data/Public
>        writable = yes
> 
> [NetworkAccess]
>        writable = yes
>        path = /data/NetworkAccess
>        write list = @shelter+TestLinuxGroup
>        force group = ntadmin
>        force user = root
>        comment = Network Share for Writability...
>        create mode = 0660
>        directory mode = 0770
> 
> [tmp]
>    comment = Temporary File Space
>    path = /data/tmp
>    read only = no
>    public = yes
> 
> ---------------------
> NSSWITCH.CONF
> ---------------------
> #
> # /etc/nsswitch.conf
> #
> # An example Name Service Switch config file. This file should be
> # sorted with the most-used services at the beginning.
> #
> # The entry '[NOTFOUND=return]' means that the search for an
> # entry should stop if the search in the previous entry turned
> # up nothing. Note that if the search failed due to some other reason
> # (like no NIS server responding) then the search continues with the
> # next entry.
> #
> # Legal entries are:
> #
> #       compat                  Use compatibility setup
> #       nisplus                 Use NIS+ (NIS version 3)
> #       nis                     Use NIS (NIS version 2), also called YP
> #       dns                     Use DNS (Domain Name Service)
> #       files                   Use the local files
> #       db                      Use the /var/db databases
> #       [NOTFOUND=return]       Stop searching if not found so far
> #
> # For more information, please read the nsswitch.conf.5 manual page.
> #
> 
> # passwd: files nis
> # shadow: files nis
> # group:  files nis
> 
> passwd: compat winbind
> group:  compat winbind
> 
> hosts:      files dns
> networks:       files dns
> 
> services:       files
> protocols:      files
> rpc:        files
> ethers:        files
> netmasks:       files
> netgroup:       files
> publickey:    files
> 
> bootparams:     files
> automount:      files nis
> aliases:        files
> 
> 
> 
> Thanks,
>

More information about the samba mailing list