[Samba] Home Directories on the fly?

Michael Davidson mdavidson at mountwashington.org
Fri Oct 13 16:21:23 GMT 2006 

This baffled me for a while too.  I eventually found a comment to a blog
article that answered the question.  You have to add

  obey pam restrictions = yes

to smb.conf

Also, I wouldn't leave /home/MYDOM with 777 perms.

Mike


-----Original Message-----
From: samba-bounces+mdavidson=mountwashington.org at lists.samba.org
[mailto:samba-bounces+mdavidson=mountwashington.org at lists.samba.org] On
Behalf Of Golden Butler
Sent: Friday, October 13, 2006 11:06 AM
To: Samba Mailing List
Subject: [Samba] Home Directories on the fly?

Hello all,
I have a functional samba/windind file server (SLES 10) thats a member
server of an Active Directory domain.  I'm able to successfully resolve user
and group accounts from AD.  The problem I'm having is samba isn't creating
home directories automatically when I try to map to a AD user share from Win
XP.  What I am able to do is, when I ssh into the machine with an AD user,
it creates the the home directory.  I can't figure out why because my pam.d
configs are configured for this to happen.  But obviously I'm missing
something.  One thing I did try as a result from googling is changing the
/home/MYDOM directory to 777, but no cigar.  Here's my pam.d configs and
smb.conf below.  Thanks in advance.

/etc/pam.d/samba:
auth     include        common-auth
account  include        common-account
password include        common-password
session  include        common-session

/etc/pam.d/sshd
auth     include        common-auth
auth     required       pam_nologin.so
account  include        common-account
password include        common-password
session  include        common-session

/etc/pam.d/common-session
session required        pam_mkhomedir.so
session required        pam_limits.so
session required        pam_unix2.so

=======================================

/etc/samba/smb.conf:
[global]
        workgroup = MYDOM
        printing = cups
        printcap name = cups
        printcap cache time = 750
        cups options = raw
        logon drive = H:
        idmap gid = 10000-20000
        idmap uid = 10000-20000
        realm = MYDOM.ORG
        security = ADS
        template homedir = /home/%D/%U
        template shell = /bin/bash
        winbind refresh tickets = yes
        winbind enum users = yes
        winbind enum groups = yes
        winbind use default domain = yes
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

More information about the samba mailing list