[Samba] Samba domain clients take too long to log in

rolandpish rolandpish at netscape.net
Thu May 10 05:32:24 GMT 2007

Hi there,
I have a Samba+LDAP Debian box as a primary domain controller.
I configured the server in order to support roaming profiles.

Everything is working perfectly. Roaming profiles are loaded and
saved correctly from the server for every user on the domain.
The big problem is this: after typing username and password from
a Windows XP client computer, it starts reading the profile from the
samba server; it says: loading settings, then it says: applying settings,
then it becomes stalled, and after about 2 minutes the computer starts
to load the desktop.

I have these packages installed: dhcp3-server, bind9, openldap (and required
packages as libnss-ldap, libpam-ldap, etc) and samba server.
Do I need something else (a package or configuration) in order to
avoid this?
Why do clients last too much before the Windows desktop is ready to use?

I would really appreciate your help because I have days fighting with this
and I have mad users at me and I don't know what to do.

Best Regards

Just in case, this is my smb.conf:

# /etc/samba/smb.conf
# samba configuration file

workgroup = linuxnet
netbios name = smbserver
server string = Samba PDC Version %v

os level = 65
preferred master = yes
local master = yes
domain master = yes
domain logons = yes

security = user
guest ok = no
encrypt passwords = yes
null passwords = no
hosts allow =
# NOTE: I had to disable wins support because clients weren't able
# to join the domain. Once I disabled wins support clients joined the
# domain succesfully
#name resolve order = wins lmhosts host bcast
#wins support = yes
#dns proxy = no

time server = yes

log file = /var/log/samba/log.%m
log level = 2
max log size = 50
hide unreadable = yes
hide dot files = yes

passdb backend = ldapsam:ldap://
ldap suffix = dc=linuxnet
ldap machine suffix = ou=machines
ldap user suffix = ou=users
ldap group suffix = ou=groups
ldap admin dn = cn=admin,dc=linuxnet
ldap delete dn = no
enable privileges = yes
ldap password sync = yes

# roaming profiles
logon home = \\%L\%U\.profile
logon drive = H:
logon path = \\%L\profiles\%U
logon script = netlogon.bat OR %U.bat

add machine script = /usr/sbin/smbldap-useradd -w "%u"


path = /home/samba/netlogon
guest ok = no
read only = yes
browseable = no

path = /home/users/%U
comment = HOME Folders
browseable = no
writeable = yes
valid users = %S
read only = no
guest ok = no
inherit permissions = yes

path = /home/samba/profiles
read only = no
writeable = yes
browseable = no
guest ok = no
hide files = /desktop.ini/ntuser.ini/NTUSER.*/
create mask = 0600
directory mask = 0700
csc policy = disable
profile acls = yes
View this message in context: http://www.nabble.com/Samba-domain-clients-take-too-long-to-log-in-tf3719763.html#a10407396
Sent from the Samba - General mailing list archive at Nabble.com.

More information about the samba mailing list