Portál AbcLinuxu, 6. května 2025 16:02

Dotaz: samba domain controler

31.7.2006 13:46 mikis
samba domain controler
Přečteno: 1504×
Odpovědět | Admin
DD,

nema nekdo z vas funkcni konfiguraci samby jako domain controleru ? tj. ocekaval bych od toho prihlasovani se z windows klientu s autentizaci proti sambe a po autentizaci namapovani disku (home katalogu atp.). Pokud jo, nemohli by ste ji postnout do fora, nebo hodit nekam na web ? Diky.
Nástroje: Začni sledovat (0) ?Zašle upozornění na váš email při vložení nového komentáře.

Odpovědi

31.7.2006 14:12 Michal Vyskočil | skóre: 60 | blog: miblog | Praha
Rozbalit Rozbalit vše Re: samba domain controler
Odpovědět | | Sbalit | Link | Blokovat | Admin
Určitě jsi zkoušel třeba google? Třeba hned první odkaz obsahuje ukázku konfiguráku.
When your hammer is C++, everything begins to look like a thumb.
31.7.2006 14:22 Cuda
Rozbalit Rozbalit vše Re: samba domain controler
Odpovědět | | Sbalit | Link | Blokovat | Admin
Už jsem Ty příklady k Sambě dával k diskusi od Rippera, ale asi si na to nenarazil. Takže k sambě doporučuju: http://www.sweb.cz/samba/samba/index.htm , http://interperson.ic.cz/index.php a http://www.linux.org/docs/ldp/howto/SMB-HOWTO.html#toc13 (poslední je v angličtině :o) )
31.7.2006 14:23 tezkatlipoka | skóre: 35
Rozbalit Rozbalit vše Re: samba domain controler
Odpovědět | | Sbalit | Link | Blokovat | Admin
to co pises je vpodstate zaklad, a default configurak se nebude muset ani moc upravovat. Opravdu jich v tomhle nastaveni najdes spousty.
Vaše řeč budiž ano, ano, ne, ne. Co je nad to, je od ďábla.
31.7.2006 15:45 Filip Jirsák | skóre: 68 | blog: Fa & Bi
Rozbalit Rozbalit vše Re: samba domain controler
Odpovědět | | Sbalit | Link | Blokovat | Admin
Má. Mohli.

Ale nevím, k čemu vámto bude… A neberte tu konfiguraci moc doslova, sice je to okopírované z běžícího Samba serveru (verze 2.0.10, s novějšími to chodit nebude – klíčové slovo passdb backend = pgsql:pgsql), ale na tom konfiguráku jsou pomalu vidět letokruhy :-) Ale kdo chce kam… 
[global]
	workgroup = xxxxxxxx
	netbios name = Porthos
	server string = Porthos

	log file = /var/log/samba/samba.log
	log level = 0
#	log level = 5
#	max log size = 25000

	unix charset = ISO8859-2

	time server = yes

	os level = 80
	local master = yes
	preferred master = yes

	hosts allow = 127.0.0.1 192.168.202.0/255.255.255.192
	interfaces = 192.168.202.5 localhost
	bind interfaces only = yes

	security = user
	domain logons = yes
	encrypt passwords = yes
	update encrypted = yes
	domain master = yes
	wins support = yes
	null passwords = yes

	logon path = \\Porthos\profiles\%G\%U
	logon home = \\Porthos\%U
	logon drive = G:
#	logon script = "wscript.exe login_script.wsf %G"
	logon script = %G.bat
#	logon script = 

	store dos attributes = yes

	printer admin = @Administrators, root, jirsak
	printing = cups
	#load printers = yes
	load printers = no
	use client driver = no
	#use client driver = yes
	printcap = cups

	deadtime = 10
#	hide local users = yes
#	add machine script = /usr/sbin/useradd -d /dev/null -g 553 -s /bin/false -M %u

#	idmap backend = ldap:ldap://ldap.xxxxxxxx.cz/
#	ldap idmap suffix = ou=idmap,dc=xxxxxxxx,dc=cz
#	idmap uid = 40000-50000
#	idmap gid = 40000-50000

#	ldap admin dn = "ou=Samba Manager,dc=xxxxxxxx,dc=cz"
#	ldap admin dn = "cn=Manager,dc=xxxxxxxx,dc=cz"
	###ldap admin dn = "ou=Samba,ou=Services,ou=Users,dc=xxxxxxxx,dc=cz"
	###ldap delete dn = no
	###ldap ssl = off
	###ldap suffix = dc=xxxxxxxx,dc=cz
	###ldap user suffix = ou=UsersOld
	###ldap group suffix = ou=Groups
	#ldap machine suffix = ou=Computers
	###ldap machine suffix = ou=ComputersOld
	#ldap filter = (&(uid=%u)(objectClass=sambaAccount))
	###ldap filter = (&(uid=%u)(objectClass=sambaSamAccount))
	###ldap passwd sync = yes
#	passdb backend = ldapsam:ldap://ldap2.xxxxxxxx.cz
	##passdb backend = pgsql:pgsql.old ldapsam:ldap://ldap.xxxxxxxx.cz
	#passdb backend = pgsql:pgsql pgsql:pgsql.old ldapsam:ldap://ldap.xxxxxxxx.cz
	##passdb backend = pgsql:pgsql ldapsam:ldap://ldap.xxxxxxxx.cz
	passdb backend = pgsql:pgsql

	pgsql:pgsql user = samba
	pgsql:pgsql database = xxxxxxxx
	pgsql:table = xxxxxxxx.v_samba_accounts
	#pgsql:table rw = xxxxxxxx.v_samba_accounts_rw
	pgsql:plain pass column = clear_password 
	pgsql:unknown string column = NULL 
	pgsql:unknown 3 column = NULL 
	pgsql:unknown 6 column = NULL 
	pgsql:workstations column = NULL 
	pgsql:munged dial column = NULL 

#performance
	socket options = TCP_NODELAY
[netlogon]
	comment = The domain logon service
	path = /var/samba/logon
	read only = yes
	browseable =no
	write list = @Administrators

[logon]
	comment = The domain logon service
	path = /var/samba/logon
	writeable = yes
	valid users = @Administrators

[aplikace]
	comment = Aplikace spoustene ze site
	path = /mnt/apps/Aplikace
	read only = yes
	browseable = yes
	guest ok = no
	write list = @Administrators, pohanova

[winsas]
	comment = Aplikace SAS
	path = /var/samba/winsas
	writeable = yes
	guest ok = no
	valid users = @Administrators @Teachers
	create mode = 0770

[vyuka]
	comment = Docasny adresar pro vyuku
	path = /var/samba/vyuka
	writeable = yes
	browseable = yes
	guest ok = no
	valid users = @Students @Teachers @Administrators @Guests
	create mode = 0775
[literatura]
	comment = Docasny adresar pro vyuku
	path = /var/samba/vyuka/Literatura
	writeable = no
	browseable = yes
	guest ok = no
	valid users = @Students @Teachers @Administrators @Guests
	create mode = 0775
	volume = FRGLIT971

[shared]
	comment = Adresar pro sdileni souboru
	path = /home/shared/grouped
	writeable = yes
	browseable = yes
	guest ok = no
	valid users = @Students @Teachers @Administrators @Guests
	create mode = 0700

[myshared]
	comment = Adresar s prijatymi soubory
	path = /home/shared/users/%U
	writeable = yes
	browseable = yes
	guest ok = no
	valid users = %U
	create mode = 0700

[installNT4]
	comment = Instalace Windows NT 4 Workstation
	path = /var/samba/install/NT4
	read only = no
	guest ok = no
	browseable = no
	write list = administrator, jirsak
	
[skola]
	comment = Skolni dokumenty
	path = /var/samba/skola
	read only = no
	guest ok = no
	valid users = @Teachers @Administrators @Guests
	
[profiles]
	csc policy = disabled
	comment = Cestovni profily
	path = /home/profiles
	read only = no
	guest ok = no
	browseable = no
	
[homes]
	comment = Domovsky adresar
	path = /home/%G/%U
	read only = no
	guest ok = no
	browseable = no

#	root preexec = /etc/samba/scripts/root_pre.py %U %G %m
#	root postexec = /etc/samba/scripts/root_post.py %U %G %m
#	preexec = /etc/samba/scripts/user_pre.py %U %G
	
[home]
	comment = Domovske adresare
	path = /home
	read only = no
	guest ok = no
	valid users = @Administrators
	
[printers]
	comment = All Printers
	path = /var/spool/samba
	browseable = no 
        printable = yes
	public = yes
	writable = no
	create mode = 0700

[vystup-PDF]
	comment = Vystup z virtualni tiskarny PDF
	path = /var/spool/cups-pdf/%U
	browseable = yes
        printable = no
	public = yes
	writable = no
	create mode = 0700

[print$]
	comment = Printer Driver Download Area
	path = /var/samba/printer-drivers
	browseable = yes
	read only = yes
	guest ok = yes
	write list = @Administrators, administrator, jirsak

[ucitelska1]
	comment = Ucitelska tiskarna v kabinete informatiky
	path = /var/spool/samba
	browseable = yes
	read only = yes
	guest ok = yes
	printable = yes

[pdf]
	comment = Vystup do formatu PDF
	path = /var/spool/samba
	browseable = yes
	read only = yes
	guest ok = yes
	printable = yes

#[SYS]
#	comment = Byvaly SYS Novellu
#	path = /mnt/SYS/SYS
#	writeable = no
#	guest ok = no
#	valid users = @Administrators install
#	browseable = yes

[SPRAVCE]
	comment = Byvaly J: Novellu
	path = /mnt/apps/Spravce
	guest ok = no
	valid users = @Administrators install
	writeable = yes
	browseable = yes

[backup]
	comment = Zalohy
	path = /mnt/backup
	guest ok = no
	valid users = @Administrators
	writeable = no
	browseable = no
	
[tmp]
	comment = temporary
	path = /var/samba/tmp
	guest ok = yes
#	write list = @Administrators
	writeable = yes
	browseable = no

[msi]
	comment = MSI install packages
	path = /mnt/apps/install
	guest ok = yes
	write list = @Administrators
	writeable = no
	browseable = no
[ris]
	comment = RIS
	path = /mnt/apps/install/Win2000
	guest ok = yes
	write list = @Administrators
	writeable = no
	browseable = yes

Založit nové vláknoNahoru

Tiskni Sdílej: Linkuj Jaggni to Vybrali.sme.sk Google Del.icio.us Facebook

ISSN 1214-1267, (c) 1999-2007 Stickfish s.r.o.