[Samba] User and Group management from Linux plus roaming profiles

L.P.H. van Belle belle at bazuin.nl
Tue Sep 8 07:38:07 UTC 2015 

If you did read correct. 

You choose... 

OR posix acls setup 
OR windows acl setup. 
Do not mix up the both! 

My advice, use windows ACL setup for profiles, since "normaly" only windows computers use this, and for this, you can set the value: 

acl_xattr:ignore system acls = yes

which makes the share even more windows acl compatible, and saves right hassle. 

Greetz, 

Louis


> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces at lists.samba.org] Namens Robert Moskowitz
> Verzonden: maandag 7 september 2015 23:07
> Aan: samba at lists.samba.org
> Onderwerp: [Samba] User and Group management from Linux plus roaming
> profiles
> 
> Right now, RSAT seems not to be an option for me, as the only Win
> systems here are XP...
> 
> None of my PDC users were brought over with classicupdate.  Perhaps
> becuase my users are LINUX user accounts?  And the home directories map
> to /home/user ?
> 
> So I would think I need to start adding users and put them into groups.
> How?
> 
> And I am reading:
> https://wiki.samba.org/index.php/Implementing_roaming_profiles
> 
> At the beginning the smb.conf starts with:
> 
> [profiles]
> 
> further down in the POSIX ACLs section it is:
> 
> [Profiles]
> 
> Are these two different shares?  Or since shares are case insensitive it
> does not matter?
> 
> Then there is:
> 
> chgrp „Domain Users“ /srv/samba/profiles
> 
> and I don't see „Domain Users“ defined.
> 
> Finally, as this is an AD, not a PDC, I am assuming I need to use 'ADUC'
> to enable roaming profiles for selected users (that got added how, see
> above).  Is ADUC available on XP?  I may have to break down and buy a
> 'cheap' used notebook on ebay with Win7 OEM preloaded...
> 
> As I think Marc said I don't use:
> 
> logon path = \\%L\Profiles\%U
> 
> for an AD.
> 
> Lastly a question on home share (and the wiki warns not to use the
> default homes share, but the home share documented).
> 
> Can the home share be on a AD Member Server?  It would seem so....
> 
> thanks.  Laboring away here!
> 
> 
> 
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list