[Samba] Printing:(Samba + CUPS + LDAP) Windows Clients(2000/XP) Slow get status printer.

Grey Karapetyan grey.karapetyan at gmail.com
Sun Mar 29 17:20:06 GMT 2009 

Hello! Help please

1)i have:
CentOS 5.2 final
Samba 3.0.28-0.e15.8
Cups 1.2.4-11.18.el5
90 printers connected to cups by lpd/lpr and samba shared with installed
windows drivers using rpcclient.

2)problem
When windows clients press "CTRL+P" from any aplication (windows notepad,
Word), window appears which shows list of printers, connected to client from
my samba server. After i click on the printer an about 10 seconds long delay
occurs. And then printing ok. But 10 second - too long.

But if user belongs to group ("Domain admins" in this case) which specified
as admin users in smb.conf (admin users = '@Domain Admins'), delay does not
occurs! (1-2 seconds).

Logs indicates no errors.
Samba using LDAP which installed on remote host.


3)smb.conf, cupsd.conf, ldap.conf

======smb.conf=====
[global]
        log file = /var/log/samba.log.%m
        log level = 0
        domain logons = no
        domain master = no
        local master = no
        preferred master = no
        wins support = no
        dns proxy = no
        os level = 0

#       server setup ---
        wins server = 10.1.1.203
        netbios name = testsrv
        workgroup = SOMETHING
        security = user
        admin users = "@Domain Admins"
        passdb backend = ldapsam:ldap://10.1.2.203
        ldap admin dn = uid=radius,ou=GK,ou=Users,dc=something
        ldap group suffix = ou=NTGroups
        ldap idmap suffix = ou=Idmap
        ldap machine suffix = ou=Computers
        ldap suffix = dc=someting
        ldap user suffix = ou=Users
        idmap gid = 100-20000000
        idmap uid = 100-20000000
        client ntlmv2 auth = Yes

#       print setup ---
        cups server = localhost:631
        load printers = yes
        printing = cups
        printcap = cups
#       printcap cache time = 60
#       lpq cache time = 0
        use client driver = no
[printers]
        comment = All Printers
        path = /var/spool/samba
        readonly = no
        browseable = no
        guest ok = yes
        writable = no
        printable = yes
[print$]
        comment = Printer Driver Download Area
        path = /etc/samba/drivers
        browseable = yes
        guest ok = yes
        read only = yes
[drivers]
        readonly = yes
        guest ok = yes
        path = /mnt/test/


======cupsd.conf=====
cupsd.conf
LogLevel error
SystemGroup sys root
# Allow remote access
Port 631
# Disable printer sharing and shared printers.
Listen testsrv:631
#Listen /var/run/cups/cups.sock
Browsing Off
DefaultAuthType Basic
<Location />
  Allow all
  # Allow remote administration...
  Order allow,deny
  Allow @LOCAL
</Location>
<Location /admin>
  Require user @SYSTEM
  Encryption Required
  # Allow remote administration...
  Order allow,deny
  Allow @LOCAL
</Location>
<Location /admin/conf>
  AuthType Basic
  Require user @SYSTEM
  # Allow remote access to the configuration files...
  Order allow,deny
  Allow @LOCAL
</Location>
<Policy default>
  <Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job Purge-Jobs
Set-Job-Attributes Create-Job-Subscription Renew-Subscription
Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job
Suspend-Current-Job Resume-Job CUPS-Move-Job>
    Order allow,deny
    Allow all
  </Limit>
  <Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer CUPS-Add-Modify-Class
CUPS-Delete-Class CUPS-Set-Default>
    AuthType Basic
    Require user @SYSTEM
    Order deny,allow
  </Limit>
  <Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer
Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs
Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer
Startup-Printer Promote-Job Schedule-Job-After CUPS-Accept-Jobs
CUPS-Reject-Jobs>
    AuthType Basic
    Order deny,allow
  </Limit>
  <Limit CUPS-Authenticate-Job>
    Require user @OWNER @SYSTEM
    Order deny,allow
  </Limit>
  <Limit All>
    Order deny,allow
  </Limit>
  <Limit Cancel-Job>
    Order deny,allow
    Require user @OWNER @SYSTEM
  </Limit>
</Policy>


====ldap.conf====
uri ldap://10.1.2.203
base    dc=something
bind_policy     soft
idle_timelimit  3700
pam_lookup_policy       yes
pam_password    exop
nss_initgroups_ignoreusers      root,ldap
nss_schema      rfc2307bis
nss_map_attribute       uniqueMember member
ssl     start_tls
ldap_version    2
pam_filter      objectclass=posixaccount
nss_base_passwd ou=Users,dc=something
nss_base_shadow ou=Users,dc=something
nss_base_group  ou=NTGroups,dc=something
tls_checkpeer   no

More information about the samba mailing list