[Samba] prefered configuration for a homes share server

Thierry Lacoste lacoste at univ-paris12.fr
Sat Jul 1 08:19:42 GMT 2006

I'm using FreeBSD 6.1 DCs with samba-3.0.22 and openldap-2.3.24.

I have two DCs. The first one runs the master ldap server and the other
runs a replica. They both hold only the [netlogon] share.

I have a third machine which holds the [homes] and [profiles] share.
This machine is simply joined to the domain and is an LDAP client only at
the OS level (i.e. with nss_ldap).
Here is its smb.conf (ALDAP1 and ALDAP2 are netbios aliases for the 2 DCs):

workgroup = MIAGE
netbios name = CAPELLA
security = DOMAIN
name resolve order = wins bcast
wins server = castor
netbios aliases = AHOMES APROFILES
password server = ALDAP1 ALDAP2

  comment = Home Directories
  valid users = %S
  read only = No
  browseable = No

  comment = Roaming Profile Share
  path = /export/profiles
  read only = No
  profile acls = Yes

From a security and/or performance perpective, is it better to make my
smb.conf ldap-aware (with passdb backend = ldapsam, etc...)?


More information about the samba mailing list