[Samba] WG: Samba PDC and big files

Daniel Müller mueller at tropenklinik.de
Fri Jun 25 00:36:35 MDT 2010 

Hello,

If I understand it right you want to have the same Outlook profile for the
users
no matter on  which workstation they login?
The first thing all user must have the same Version of Outlook!!!!! And use
an IMAP SERVER
Then you must work with prf files for outlook for eauch user in your
netlogon path of samba
I am working with kixstart. On sigining in  each user get his pref file. You
can download files from
Microsoft.

Snipp of a prf-file outlook 2003, see section Account1 for settings.
Example, see Service1 for the
path of outlook.pst  on my samba:
PathToPersonalFolders=\\tuepropdc\%USERNAME%\outlook\%USERNAME%.pst

;Automatically generated PRF file from the Microsoft Office Customization
and Installation Wizard

; **************************************************************
; Section 1 - Profile Defaults
; **************************************************************

[General]
Custom=1
ProfileName=test
DefaultProfile=Yes
OverwriteProfile=Yes
ModifyDefaultProfileIfPresent=FALSE
;DefaultStore=Service1

; **************************************************************
; Section 2 - Services in Profile
; **************************************************************

[Service List]
;ServiceX=Microsoft Outlook Client
Service1=Personal Folders
;Service2=Unicode Personal Folders
Service2=Outlook Address Book
Service3=Personal Address Book

;***************************************************************
; Section 3 - List of internet accounts
;***************************************************************

[Internet Account List]
;Account1=I_Mail
Account1=IMAP_I_Mail
;Account3=INET_HTTP

;***************************************************************
; Section 4 - Default values for each service.
;***************************************************************
[Service1]
UniqueService=No
Name=Mein persönlicher Ordner
PathToPersonalFolders=\\tuepropdc\%USERNAME%\outlook\%USERNAME%.pst
EncryptionType=0x80000000

;[Service2]
;UniqueService=No
;Name=Another Personal Folder
;PathToPersonalFolders=%USERPROFILE%\local settings\application
data\microsoft\outlook\o23utlook.pst
;EncryptionType=0x40000000


[Service2]

[Service3]
NameOfPAB="Persönliches Adress Buch"
Path="\\tuepropdc\%USERNAME%\outlook\%USERNAME%.pab"
ShowNamesBy=0




;***************************************************************
; Section 5 - Values for each internet account.
;***************************************************************

;[Account1]
;UniqueService=No
;AccountName=Outlook Tips POP3
;POP3Server=mail.outlook-tips.net
;SMTPServer=mail.outlook-tips.net
;POP3UserName=outlookt
;EmailAddress=tips at outlook-tips.net
;POP3UseSPA=0
;DisplayName=
;ReplyEMailAddress=
;SMTPUseAuth=1
;SMTPAuthMethod=0
;ConnectionType=0
;LeaveOnServer=0x0
;ConnectionOID=MyConnection
;POP3Port=110
;POP3UseSSL=0
;ServerTimeOut=60
;SMTPPort=25
;SMTPUseSSL=0

[Account1]
UniqueService=No
AccountName=TPLKIMAP
IMAPServer=192.168.135.248
SMTPServer=192.168.135.248
IMAPUserName=testuser
EmailAddress=testuser at tropenklinik.de
IMAPUseSPA=0
DisplayName=Testuser
ReplyEMailAddress=testuser at tropenklinik.de
SMTPUseAuth=0
SMTPAuthMethod=0
ConnectionType=0
RootFolder=
ConnectionOID=192.168.135.248
IMAPPort=143
IMAPUseSSL=0
ServerTimeOut=60
SMTPPort=25
SMTPUseSSL=0

;[Account3]
;UniqueService=No
;HttpServer=http://services.msn.com/svcs/hotmail/httpmail.asp
;UserName=poremsky at hotmail.com
;Organization=
;Reply=
;Account=Poremsky-Hotmail
;EmailAddress=poremsky at hotmail.com
;FullName=Diane Poremsky
;Connection Type=0
;ConnectOID=

;***************************************************************
; Section 6 - Mapping for profile properties
;***************************************************************

[Microsoft Exchange Server]
ServiceName=MSEMS
MDBGUID=5494A1C0297F101BA58708002B2A2517
MailboxName=PT_STRING8,0x6607
HomeServer=PT_STRING8,0x6608
OfflineAddressBookPath=PT_STRING8,0x660E
OfflineFolderPath=PT_STRING8,0x6610

[Exchange Global Section]
SectionGUID=13dbb0c8aa05101a9bb000aa002fc45a
MailboxName=PT_STRING8,0x6607
HomeServer=PT_STRING8,0x6608
RPCoverHTTPflags=PT_LONG,0x6623
RPCProxyServer=PT_UNICODE,0x6622
RPCProxyPrincipalName=PT_UNICODE,0x6625
RPCProxyAuthScheme=PT_LONG,0x6627
CachedExchangeConfigFlags=PT_LONG,0x6629

[Microsoft Mail]
ServiceName=MSFS
ServerPath=PT_STRING8,0x6600
Mailbox=PT_STRING8,0x6601
Password=PT_STRING8,0x67f0
RememberPassword=PT_BOOLEAN,0x6606
ConnectionType=PT_LONG,0x6603
UseSessionLog=PT_BOOLEAN,0x6604
SessionLogPath=PT_STRING8,0x6605
EnableUpload=PT_BOOLEAN,0x6620
EnableDownload=PT_BOOLEAN,0x6621
UploadMask=PT_LONG,0x6622
NetBiosNotification=PT_BOOLEAN,0x6623
NewMailPollInterval=PT_STRING8,0x6624
DisplayGalOnly=PT_BOOLEAN,0x6625
UseHeadersOnLAN=PT_BOOLEAN,0x6630
UseLocalAdressBookOnLAN=PT_BOOLEAN,0x6631
UseExternalToHelpDeliverOnLAN=PT_BOOLEAN,0x6632
UseHeadersOnRAS=PT_BOOLEAN,0x6640
UseLocalAdressBookOnRAS=PT_BOOLEAN,0x6641
UseExternalToHelpDeliverOnRAS=PT_BOOLEAN,0x6639
ConnectOnStartup=PT_BOOLEAN,0x6642
DisconnectAfterRetrieveHeaders=PT_BOOLEAN,0x6643
DisconnectAfterRetrieveMail=PT_BOOLEAN,0x6644
DisconnectOnExit=PT_BOOLEAN,0x6645
DefaultDialupConnectionName=PT_STRING8,0x6646
DialupRetryCount=PT_STRING8,0x6648
DialupRetryDelay=PT_STRING8,0x6649

[Personal Folders]
ServiceName=MSPST MS
Name=PT_STRING8,0x3001
PathToPersonalFolders=PT_STRING8,0x6700 
RememberPassword=PT_BOOLEAN,0x6701
EncryptionType=PT_LONG,0x6702
Password=PT_STRING8,0x6703

[Unicode Personal Folders]
ServiceName=MSUPST MS
Name=PT_UNICODE,0x3001
PathToPersonalFolders=PT_STRING8,0x6700 
RememberPassword=PT_BOOLEAN,0x6701
EncryptionType=PT_LONG,0x6702
Password=PT_STRING8,0x6703

[Outlook Address Book]
ServiceName=CONTAB

[LDAP Directory]
ServiceName=EMABLT
ServerName=PT_STRING8,0x6600
UserName=PT_STRING8,0x6602
UseSSL=PT_BOOLEAN,0x6613
UseSPA=PT_BOOLEAN,0x6615
DisableVLV=PT_LONG,0x6616
DisplayName=PT_STRING8,0x3001
ConnectionPort=PT_STRING8,0x6601
SearchTimeout=PT_STRING8,0x6607
MaxEntriesReturned=PT_STRING8,0x6608
SearchBase=PT_STRING8,0x6603

[Microsoft Outlook Client]
SectionGUID=0a0d020000000000c000000000000046
FormDirectoryPage=PT_STRING8,0x0270
WebServicesLocation=PT_STRING8,0x0271
ComposeWithWebServices=PT_BOOLEAN,0x0272
PromptWhenUsingWebServices=PT_BOOLEAN,0x0273
OpenWithWebServices=PT_BOOLEAN,0x0274
CachedExchangeMode=PT_LONG,0x041f
CachedExchangeSlowDetect=PT_BOOLEAN,0x0420

[Personal Address Book]
ServiceName=MSPST AB
NameOfPAB=PT_STRING8,0x001e3001
Path=PT_STRING8,0x001e6600
ShowNamesBy=PT_LONG,0x00036601

; ************************************************************************
; Section 7 - Mapping for internet account properties.  DO NOT MODIFY.
; ************************************************************************

[I_Mail]
AccountType=POP3
;--- POP3 Account Settings ---
AccountName=PT_UNICODE,0x0002
DisplayName=PT_UNICODE,0x000B
EmailAddress=PT_UNICODE,0x000C
;--- POP3 Account Settings ---
POP3Server=PT_UNICODE,0x0100
POP3UserName=PT_UNICODE,0x0101
POP3UseSPA=PT_LONG,0x0108
Organization=PT_UNICODE,0x0107
ReplyEmailAddress=PT_UNICODE,0x0103
POP3Port=PT_LONG,0x0104
POP3UseSSL=PT_LONG,0x0105
; --- SMTP Account Settings ---
SMTPServer=PT_UNICODE,0x0200
SMTPUseAuth=PT_LONG,0x0203
SMTPAuthMethod=PT_LONG,0x0208
SMTPUserName=PT_UNICODE,0x0204
SMTPUseSPA=PT_LONG,0x0207
ConnectionType=PT_LONG,0x000F
ConnectionOID=PT_UNICODE,0x0010
SMTPPort=PT_LONG,0x0201
SMTPUseSSL=PT_LONG,0x0202
ServerTimeOut=PT_LONG,0x0209
LeaveOnServer=PT_LONG,0x1000

[IMAP_I_Mail]
AccountType=IMAP
;--- IMAP Account Settings ---
AccountName=PT_UNICODE,0x0002
DisplayName=PT_UNICODE,0x000B
EmailAddress=PT_UNICODE,0x000C
;--- IMAP Account Settings ---
IMAPServer=PT_UNICODE,0x0100
IMAPUserName=PT_UNICODE,0x0101
IMAPUseSPA=PT_LONG,0x0108
Organization=PT_UNICODE,0x0107
ReplyEmailAddress=PT_UNICODE,0x0103
IMAPPort=PT_LONG,0x0104
IMAPUseSSL=PT_LONG,0x0105
; --- SMTP Account Settings ---
SMTPServer=PT_UNICODE,0x0200
SMTPUseAuth=PT_LONG,0x0203
SMTPAuthMethod=PT_LONG,0x0208
SMTPUserName=PT_UNICODE,0x0204
SMTPUseSPA=PT_LONG,0x0207
ConnectionType=PT_LONG,0x000F
ConnectionOID=PT_UNICODE,0x0010
SMTPPort=PT_LONG,0x0201
SMTPUseSSL=PT_LONG,0x0202
ServerTimeOut=PT_LONG,0x0209
CheckNewImap=PT_LONG,0x1100
RootFolder=PT_UNICODE,0x1101

[INET_HTTP]
AccountType=HOTMAIL
Account=PT_UNICODE,0x0002
HttpServer=PT_UNICODE,0x0100
UserName=PT_UNICODE,0x0101
Organization=PT_UNICODE,0x0107
UseSPA=PT_LONG,0x0108
TimeOut=PT_LONG,0x0209
Reply=PT_UNICODE,0x0103
EmailAddress=PT_UNICODE,0x000C
FullName=PT_UNICODE,0x000B
Connection Type=PT_LONG,0x000F
ConnectOID=PT_UNICODE,0x0010

My kixstart script to get the prfs and the location of the psts managed on
sign in writing values to the registry :

$prfloc='HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows Messaging
Subsystem\Profiles'
 IF ReadValue($prfloc,'DefaultProfile')<>@USERID OR @ERROR
  COPY '\\tuepropdc\netlogon\scripts\@USERID.prf' 'C:\windows\temp\'
    $exe=ReadValue('HKLM\Software\Microsoft\Windows\CurrentVersion\App
Paths\OUTLOOK.EXE','')
    $ver=SPLIT(GetFileVersion($exe),'.')[0]+'.0'
    IF $ver='10.0' OR $ver='11.0' ;(e.g. 10.0.2627.1) XP or 2003
 
$rc=DelValue('HKCU\Software\Microsoft\Office\'+$ver+'\Outlook\Setup','First-
Run')
 
writevalue('HKCU\Software\Microsoft\Office\'+$ver+'\Outlook','ForcePSTPath',
'\\tuepropdc\%username%\outlook','REG_SZ')
	
$rc=WriteValue('HKCU\Software\Microsoft\Office\'+$ver+'\Outlook\Setup','Impo
rtPRF','C:\windows\temp\@USERID.prf','REG_SZ')
       IF $ver='10.0'
 
$rc=WriteValue('HKCU\Software\Microsoft\Office\'+$ver+'\Outlook\IM','Enabled
',0,'REG_DWORD')
       ENDIF
   ENDIF
 ENDIF



Other things you may want to do is to hold the Profile on the server without
copy to and from:
Look at this:
http://www.samba.org/samba/docs/man/Samba-Guide/happy.html#id2582162

My kixkstart script:

;we redirect personal folder to the server

;we look at the registry if there isvalue that the folders has been
redirected
;zunächst gibt es diesen Eintrag schon?

$RETURNCODE=EXISTKEY("HKEY_CURRENT_USER\tpdc")

;if not set it it in the registry

IF NOT $RETURNCODE=0
ADDKEY("HKEY_CURRENT_USER\tpdc")

;now  if we set the above key we know it ist he first login and we set it.
Later on we will delete this key

ADDKEY("HKEY_CURRENT_USER\tpdc\FIRST_LOGIN")
ENDIF
 
;now if it ist he first login we have to do something

$RETURNCODE=EXISTKEY("HKEY_CURRENT_USER\tpdc\FIRST_LOGIN")


IF  $RETURNCODE=0
;geschachtelte Bedingung




$RETURNCODE=EXISTKEY("HKEY_CURRENT_USER\tpdc\profile_copied")
IF NOT $RETURNCODE=0
;if there is a profile




IF EXIST("\\tpdc\@userID\@userID\profile")




copy "\\tpdc\@userID\@userID\profile\Eigene Dateien\*" "\\tpdc\@userID\" 






ENDIF
;nun setzen wir den hinweis das Eigene Dateien kopiert worden sind
ADDKEY("HKEY_CURRENT_USER\tpdc\profile_copied")

;set the redirected shell folders in the registry

WRITEVALUE("HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Expl
orer\Shell Folders","Personal","\\tpdc\@userID","REG_SZ")
WRITEVALUE("HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Expl
orer\Shell Folders","My Pictures","\\tpdc\@userID\Meine Bilder","REG_SZ")
WRITEVALUE("HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Expl
orer\Shell Folders","My Music","\\tpdc\@userID\Meine Musik","REG_SZ")
WRITEVALUE("HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Expl
orer\Shell Folders","My Videos","\\tpdc\@userID\Meine Videos","REG_SZ")




WRITEVALUE("HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Expl
orer\User Shell Folders","Personal","\\tpdc\@userID","REG_SZ")
WRITEVALUE("HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Expl
orer\User Shell Folders","My Pictures","\\tpdc\@userID\Meine
Bilder","REG_SZ")
WRITEVALUE("HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Expl
orer\User Shell Folders","My Music","\\tpdc\@userID\Meine Musik","REG_SZ")
WRITEVALUE("HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Expl
orer\User Shell Folders","My Videos","\\tpdc\@userID\Meine Videos","REG_SZ")

;jetzt sollen Server profile nicht mehr lokal gecached werden 16.07.07 wird
über ntconfig.pol abgebildet
;$PFAD="HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\"
;WRITEVALUE("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\","DeleteRoamingCache","0000000","REG_DWORD")


;schachtelung ende
ENDIF
;first login löschen

$RETURNVALUE=EXISTKEY("HKEY_CURRENT_USER\tpdc\FIRST_LOGIN")
IF $RETURNVALUE=0
DELKEY("HKEY_CURRENT_USER\tpdc\FIRST_LOGIN")
ENDIF


For this to work you must have a policy for all your clients to not locally
cache profiles.

Happy trying
Daniel


-----------------------------------------------
EDV Daniel Müller

Leitung EDV
Tropenklinik Paul-Lechler-Krankenhaus
Paul-Lechler-Str. 24
72076 Tübingen

Tel.: 07071/206-463, Fax: 07071/206-499
eMail: mueller at tropenklinik.de
Internet: www.tropenklinik.de
-----------------------------------------------
-----Ursprüngliche Nachricht-----
Von: samba-bounces at lists.samba.org [mailto:samba-bounces at lists.samba.org] Im
Auftrag von Natxo Asenjo
Gesendet: Donnerstag, 24. Juni 2010 20:50
An: Samba Mail List
Betreff: Re: [Samba] Samba PDC and big files

On Thu, Jun 24, 2010 at 2:04 PM, Pedro Rafael Alves Simoes
<pedro.a.simoes at gmail.com> wrote:
> Hello,
>
> I'm trying to setup a PDC with Samba, but I have the known problem of the
> roaming profiles: big files. I think it's difficult to guarantee that a
> inexperienced user will copy is downloaded files, documents, or whatever,
> to a H:\ share instead of is handy desktop. Other problem is the files of
> Outlook or Thunderbird that can get big. The goal is to avoid email
> configuration each time the user changes to another workstation, so I
can't
> configure the email client to store the files locally on the workstation.

1. Do not store mail locally, you will lose mail if you do. Use a
central imap server for instance, it's also much easier for backups;

2. I set the user's desktop to readonly with cacls in the logon
scripts, problem solved (get yourself management's approval before you
try this, explain why it is necessary). If they do not want to listen
to you then ...

3. use folder redirection. This is harder to do in a pure samba 3
environment than in AD, but it is certainly doable. Soon, with samba 4
we will have all the group policy goodies :-)

-- 
natxo
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list