[Samba] Roaming profiles

devel at thom.fr.eu.org devel at thom.fr.eu.org
Tue Aug 19 14:59:41 GMT 2008 

Maybe you could provide a level 10 log of when the first error happens
(for a new user).

Are all your users member of the group "users" ?
Are all the underlying directories (/var /var/lib /var/lib/samba ...) set
with at least the o+x permission on the file system ?

François

> Hi people. Im in need of help as far as roaming profiles are concerned.
> Allow me as I know this issue has been discussed timelessly but let me
> just
> ask it because I have been unable to get it to work.
>
> My Samba + Ldap setup is fine and XP users can authenticate alright. Im
> using samba 3.0.28. However when logging in for the first time, they get
> the
> message;
>
> Windows cannot locate a server copy....    -Access is denied
>
> When logging off,
>
> Windows cannot update your roaming profile... -Access is denied
>
> I copied the profiles across from another server, so the first error does
> not come up except for new users and the old profiles are mapped onto the
> users machines just fine.
>
> I think I've done everything for roaming profiles to work including
>
> mkdir -p /var/lib/samba/profiles
> chown root:users /var/lib/samba/profiles
> chmod 2775 /var/lib/samba/profiles
>
> chown -R user /var/lib/samba/profiles/user/
>
> The samba logs don't  show any errors.
>
> Below is my smb.conf file
> [global]
>         workgroup = EXAMPLE
>         netbios name = EXAMPLE_SERVER
>         server string = Samba Server Version %v
>         passdb backend = ldapsam:ldap://example.org/
>         log file = /var/log/samba/%m.log
>         max log size = 50
>         add user script = /usr/sbin/adduser -m "%u"
>         add machine script = /usr/sbin/useradd -d /var/lib/nobody -g 100
> -s
> /bin/false -M %u
>         logon script = %u.bat
>         logon path = \\EXAMPLE_SERVER\profiles\%U
>         logon home = \\EXAMPLE_SERVER\%U
>         domain logons = Yes
>         domain master = Yes
>         ldap admin dn = "cn=config"
>         ldap group suffix = ou=groups
>         ldap machine suffix = ou=machines
>         ldap passwd sync = Yes
>         ldap suffix = dc=example,dc=org
>         ldap user suffix = ou=people
>         cups options = raw
> [homes]
>         comment = Home Directories
>         validusers = %S
>         read only = No
>         browseable = No
>         writable = Yes
>         create mask= 0700
>         directory mask = 0700
> [netlogon]
>         comment = Network Logon Service
>         path = /var/lib/samba/netlogon
>         share modes = No
>         guest ok = Yes
> [profiles]
>         path = /var/lib/samba/profiles
>         read only = No
>         writable = Yes
>         profile acls = Yes
>         comment = User profiles
>         create mask = 0600
>         browsable = no
>         directory mask = 0700
>
> My searches on the web have not helped much. I am running on a Red Hat
> like
> system (CentOS 5).
>
> Someone please help. I will be eternally grateful.
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/listinfo/samba
>


--

More information about the samba mailing list