[Samba] Roaming profiles
Rowland Penny
rpenny at samba.org
Wed Jun 20 13:06:13 UTC 2018
On Wed, 20 Jun 2018 13:42:14 +0200
Michael Funke via samba <samba at lists.samba.org> wrote:
> Hey,
>
> I want to use a debian stretch with samba 4 as a fileserver, but I
> have problems with the access.
>
> Here is what I did:
>
> apt-get install samba winbind libpam-heimdal libnss-winbind
> /etc/init.d/winbind stop
> /etc/init.d/samba stop
> nano /etc/krb5.conf https://pastebin.com/rkBPJ2Wz
> nano /etc/samba/smb.conf https://pastebin.com/h1cJZ6sM
> nano /etc/nsswitch.conf https://pastebin.com/gxK2rJLU
>
> getent hosts fs
>
> smbd -b | egrep "LOCKDIR|STATEDIR|CACHEDIR|PRIVATE_DIR"
> rm -v /var/run/samba/*.tdb /var/run/samba/*.ldb /var/lib/samba/*.tdb
> /var/lib/samba/*.ldb /var/cache/samba/*.tdb /var/cache/samba/*.ldb
> /var/lib/samba/private/*.tdb /var/lib/samba/private/*.ldb
>
> reboot
>
> net ads join -U administrator
> /etc/init.d/winbind start
>
> wbinfo --ping-dc
> getent passwd
> getent group
>
> net rpc rights grant "EXAMPLE\Domänen-Admins" SeDiskOperatorPrivilege
> -U "EXAMPLE\administrator"
> net rpc rights list privileges SeDiskOperatorPrivilege -U
> "EXAMPLE\administrator"
>
> mkdir -p /home/EXAMPLE/profiles
> chgrp -R domänen-benutzer /home/EXAMPLE/profiles/
> chmod 1750 /home/EXAMPLE/profiles/
>
> smbcontrol all reload-config
>
> What did I wrong?
If you did exactly the above, then two things, the realm
in /etc/krb5.conf should be in uppercase. You also seem to have
forgotten to restart smbd & nmbd.
Rowland
More information about the samba
mailing list