[Samba] To create Samba domain

Thu Jun 3 18:33:36 MDT 2010

Hello!

I installed Samba version 3.2.7-11.9.1-2306-SUSE-CODE11 on Linux SuSE 11 as
below configuration.

[global]

        workgroup = OTTOFILE

        printing = cups

#       guest account = nobody

        printcap name = cups

        printcap cache time = 750

        cups options = raw

        map to guest = Bad User

        logon path = \\%L\profiles\.msprofile
<file:///\\%25L\profiles\.msprofile> 

        logon home = \\%L\%U\.9xprofile <file:///\\%25L\%25U\.9xprofile> 

        logon drive = P:

        usershare allow guests = Yes

        add machine script = /sbin/yast
/usr/share/YaST2/data/add_machine.ycp %m$

        domain logons = Yes

        domain master = Yes

        idmap backend = ldap:ldap://localhost

        ldap admin dn = cn=Administrator,dc=otto,dc=kr

        ldap group suffix = ou=Groups

        ldap idmap suffix = ou=Idmap

        ldap machine suffix = ou=Machines

        ldap passwd sync = Yes

        ldap ssl = Off

        ldap suffix = dc=otto,dc=kr

        ldap user suffix = ou=Users

        local master = Yes

        netbios name = OTTOFILE

        os level = 33

        passdb backend = ldapsam:ldap://localhost

        preferred master = Yes

        security = user

        wins support = Yes

        usershare max shares = 200

        idmap gid = 10000-20000

        idmap uid = 10000-20000

        encrypt passwords = Yes

[profiles]

        comment = Network Profiles Service

        path = %H

        read only = No

        store dos attributes = Yes

        create mask = 0600

        directory mask = 0700

        browseable = No

[printers]

        comment = All Printers

        path = /var/tmp

        printable = Yes

        create mask = 0600

        browseable = No

[print$]

        comment = Printer Drivers

        path = /var/lib/samba/drivers

        write list = @ntadmin root

        force group = ntadmin

        create mask = 0664

        directory mask = 0775

        browseable = No

[it]

        comment = IT Team

        inherit acls = No

        path = /IT/

        read only = No

        write list = +IT +USERS +root

        writable = yes

        directory mask = 0750

I tried to create Samba domain and groups following as:

>net getlocalsid testserver

SID for domain testserver is: S-1-5-21-3489264249-1556752242-1837584028

>net groupmap add sid= S-1-5-21-3489264249-1556752242-1837584028
ntgroup="Domain Admins" unixgroup=ntadmin

 adding entry for group System Managers failed

>net groupmap add ntgroup="System Managers" unixgroup=sysadmin

 No rid or sid specified, choosing a RID

Got RID 1005

adding entry for group System Managers failed!

I don't know what major problems are there and how to solve these problems.

Could you please tell me some hints what predicated steps before to create
Samba domain or major problems for my try?

Kyung-sub Han

Team Manager
IT P&C Team

OTTO KOREA LTD.

Boryung Bldg. 3F

66-21 Wonnamdong, Jongnogu

Seoul 110-750, Korea

--------------------------------------------------------

Phone: 82-2-3706-0101

Fax: 82-2-3706-0197

E-mail:  <mailto:dichks at otto.co.kr> dichks at otto.kr

--------------------------------------------------------

This e-mail may contain confidential and/or privileged information. If you
are not the intended recipient (or have received this e-mail in error), 
please notify the sender immediately and delete this e-mail. Any
unauthorized copying, disclosure or distribution of the material in this
e-mail is strictly forbidden.

6 Before printing this e-mail, please consider if it is really necessary.