[Samba] pdc configuration

Jon Wilson iambiscuit at gmail.com
Sat Mar 24 14:53:31 GMT 2007 

Hi all,

just read this thread and sparked a couple thoughts ...

Re: {Digitally encrypt...,> Digitally encrypt secure, Digitally sign
... } options
I'm not starting an argument here or saying you are wrong, merely
making the observation that I've never had to do this to make any of
our 350 workstations join the domain ... well not that I can remember
anyhow.

Also:
Re: >    socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

And here is my question I guess ...

I *thought* I've recently read the O_RCVBUF=8192 SO_SNDBUF=8192
options shouldnt be used on 2.6 kernels. Have I got the wrong end of
the stick here or is this the case ?

Many thanks

/Jon


On 24/03/07, sato x <garasi9 at gmail.com> wrote:

> Hi...
>
> Don't forget the [netlogon] share in smb.conf. You will need that for your
> windows users to login into the domain. All login script should be placed
> there; or if you didn't want any login script, just leave it empty. BUT, you
> must have it, no matter how.
>
> Other story, for winXP Pro to login into domain, you would have to change
> something in registry or in local security settings (within Administrative
> Tools) (it has something to do with Domain member: {Digitally encrypt...,
> Digitally encrypt secure, Digitally sign ... } options. You can access it
> via  Security Settings > Local Policies > Security Options. Just set the
> values to disable). Don't forget to join the machine into the domain.
>
> WinXP Home cannot join the domain, but you can still access the share in the
> domain automatically after you login into your local domain (I mean, your
> WinXP Home local domain/workgroup). Create a local user with password as
> same as the one in the PDC. Then create a machine account for your WinXP
> Home directly in your PDC (in term of WinXP Pro, join the machine into the
> domain). As for win98/Me, no need to worry about the WinXP issue. Hope it
> can help.
>
> Regards,
>
> sato
>
> On 3/22/07, Asier Baranguán <abaranguan at elpagestion.com> wrote:
> >
> > fharrington at ocln.org escribió:
> > >
> > > Hello,
> > >
> > > I am using the February 15, 2002 document by Andrew Bartlett titled
> > Using
> > > Samba as a PDC.
> > >
> > > Having difficulty, is there a more recent document or guidelines ? I am
> > > getting access denied - shares have worked but not the PDC part.
> > >
> > > below is the smb.conf without comments:
> > >
> > > #begin smb.conf
> > >    workgroup = CENTOS
> > >    server string = Samba Server
> > >    hosts allow = 192.199.2.
> > >
> > > printcap name = /etc/printcap
> > >    load printers = yes
> > > cups options = raw
> > >  log file = /var/log/samba/%m.log
> > >    max log size = 50
> > >    security = user
> > >   encrypt passwords = yes
> > >   domain logons=yes
> > >   unix password sync = Yes
> > >   passwd program = /usr/bin/passwd %u
> > >    socket options = TCP_NODELAY SO_RCVBUF=8192
> > > SO_SNDBUF=8192
> > >    dns proxy = no
> >
> > You must add the following to become a PDC:
> >
> > ### PDC
> >      domain master = yes
> >      domain logons = yes
> >      preferred master = yes
> >      local master = yes
> >      os level = 100
> >
> > If you have Windows clients add:
> >
> >      wins support = yes
> >      name resolve order = wins hosts lmhosts bcast
> >
> > --
> > To unsubscribe from this list go to the following URL and read the
> > instructions:  https://lists.samba.org/mailman/listinfo/samba
> >
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/listinfo/samba
>

More information about the samba mailing list