[Samba] Unable to Join system to Domain at BDC

mallapadi niranjan niranjan.ashok at gmail.com
Mon May 8 05:08:56 GMT 2006


hi

so my bdc smb.conf should also have
#########################################################
    ldap passwd sync = yes
   add user script = /usr/local/sbin/smbldap-useradd -m "%u"
   delete user script = /usr/local/sbin/smbldap-userdel "%u"
   add machine script = /usr/local/sbin/smbldap-useradd -w "%m"
   add group script = /usr/local/sbin/smbldap-groupadd -p "%g"
   add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g"
   delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u"
"%g"
   set primary group script = /usr/local/sbin/smbldap-usermod -g '%g' '%u'
   ldap delete dn = Yes
#########################################################
can you please guide me as how do i configure MY BDC, so that i could join
computers
from BDC network, as my BDC is in different subnet,

my Samba PDC smb.conf is as below
##########################################################
[global]
   workgroup = mydomain.com
   netbios name = mydomain
   passdb backend = ldapsam:ldap://mydomain.com
   server string = Domain Controller
   hosts allow = 192.168.128. 192.168.129. 192.168.130. 127.
   security = user
   encrypt passwords = yes
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
   interfaces = eth0, lo
   printing = cups
   disable spoolss = Yes
   printcap name = cups
   max print jobs = 100
   enable privileges = yes
   password level = 8
   username level = 8
   bind interfaces only = yes
   local master = Yes
   os level = 65
   domain master = yes
   preferred master = yes
   null passwords = no
   hide unreadable = yes
   hide dot files = yes
   domain logons = yes

   logon script = %u.bat
   logon path =

  logon drive = X:
   logon home = \\mydomain\%U
   wins support = yes
   name resolve order = wins lmhosts host bcast
   dns proxy = no
   time server = yes
   log file = /var/log/samba/%m.log
   max log size = 50
   nt acl support = yes
   ldap passwd sync = yes
   add user script = /usr/local/sbin/smbldap-useradd -m "%u"
   delete user script = /usr/local/sbin/smbldap-userdel "%u"
   add machine script = /usr/local/sbin/smbldap-useradd -w "%m"
   add group script = /usr/local/sbin/smbldap-groupadd -p "%g"
   add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g"
   delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u"
"%g"
   set primary group script = /usr/local/sbin/smbldap-usermod -g '%g' '%u'
   ldap delete dn = Yes
   ldap ssl = no
   ldap suffix = dc=msdpl,dc=com
   ldap admin dn = cn=manager,dc=msdpl,dc=com
   ldap group suffix = ou=Groups
   ldap user suffix = ou=People
   ldap machine suffix = ou=Computers
   ldap idmap suffix = ou=Idmap
   ldap timeout = 50
   idmap backend = ldap:ldap://mydomain.com
   idmap uid = 10000-20000
   idmap gid = 10000-20000
   check password script = /usr/local/bin/crackcheck -s
   map acl inherit = yes
   winbind use default domain = yes
   template shell = /bin/false

 # Un-comment the following and create the netlogon directory for Domain
Logons
  [netlogon]
    comment = Network Logon Service
    path = /usr/local/samba-3c/lib/netlogon/scripts
    guest ok = yes
    browseable = yes
    write list = root

 [profiles]
 Comment = Profile Shares
 path=/profiles
 browseable=yes
 writeable = yes
 create mode = 0600
 directory mode = 0700
 ################################################################


Regards
Niranjan


More information about the samba mailing list