[Samba] Re: SAMBA/PDC + LDAP HELP please? => For your profiles.

Louis van Belle louis at van-belle.nl
Fri Oct 7 06:54:30 GMT 2005 

Hi, For the profile problems. 

This is my working config.

in the smb.conf
(global setting ) 
## MISC PROFILE
        logon script = logon.cmd
        logon home = \\%L\%U
        logon path = \\%L\profiles\%U
        logon drive = P:

and 

[profiles]
        path = /home/samba/profiles
        comment = Profiel omgeving
        read only = no
        create mask = 0600
        directory mask = 0700
## browseable = yes can be no also, but i need it to be browsable.
## if you want it browsable but not shown, add a $ behind [profiles$] 
## and same in the logon path above.
        browseable = Yes
        guest ok = Yes
        csc policy = disable 
        # next line is a great way to secure the profiles
        force user = %U
        # next line allows administrator to access all profiles
        valid users = %U @"Domain Admins"

when this is done. 

add 2 registry keys.
/cut_here
REGEDIT4
; do not roam the following folders
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
"ExcludeProfileDirs"="Temporary Internet Files;History;Temp"

;-------------------------------------------------------------------------
; force Windows XP Professional clients to accept Samba as a PDC
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters]
"requiresignorseal"=dword:00000000
"signsecurechannel"=dword:00000000 

;-------------------------------------------------------------------------
; Do not check for user ownership of Roaming Profile Folders
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System]
"CompatibleRUPSecurity"=dword:00000001
/cut_here

this wil work, and many thanks for who help me out some time ago ;-) 

Louis

>-----Oorspronkelijk bericht-----
>Van: samba-bounces+louis=van-belle.nl at lists.samba.org 
>[mailto:samba-bounces+louis=van-belle.nl at lists.samba.org] 
>Namens Ryan Taylor
>Verzonden: donderdag 6 oktober 2005 17:56
>Aan: samba at lists.samba.org
>Onderwerp: [Samba] Re: SAMBA/PDC + LDAP HELP please?
>
>Ok, I figured it out!! Thank you for the help and for others 
>the change was
>in /etc/ldap.conf and I had:
>rootbinddn = cn=root,ou=???,dc=beefylinux,dc=com
>i removed the ou=group after root and changed "rootbinddn" to 
>just "binddn"
>and that did it..
>
>Everything works great except for the profiles which the 
>windows machine
>doesn't seem to know about
>%L variable. I imagine this is because I am on Samba 3.0.10 
>not 3.0.20a so
>maybe its a new variable...
>
>Anyway, just wanted to say Thank you to everyone for the help. 
>The microsoft
>rep. assigned to out company
>is not going to be happy next week when time to renew!! ha, i love it.
>
>--Ryan Taylor
>rtaylor82 at gmail.com
>Micro Consultants
>-- 
>To unsubscribe from this list go to the following URL and read the
>instructions:  https://lists.samba.org/mailman/listinfo/samba
>

More information about the samba mailing list