Re: [Samba] Default Keyboard Layout changed to english.
On Thu, 10 Mar 2011 13:45:17 +0200 Kalev Riivik kal...@iisaku.edu.ee wrote: KR i upgraded debian from lenny to squeeze and i managed to mess up KR config file or update (cuz i'm quite noob when it comes to linux). KR I'm gonna try to explain best to my abillity, how i got where i am KR right now (bear in mind that this is my first time in this list). KR Since smbpasswd and pdbedit had mysteriously vanished after upgrade, KR i did reinstall to samba (3.5.6 PDC with roaming profiles). Since i KR did backup of entire /etc folder i put the old smb.conf back, but KR what happened was that nobody was able to log in (from xp). So what i KR had to do, was leave and rejoin the domain with all of the computers. KR After that it appeared that i had to input everyone's password again. KR Then some people were able to log in and others were not after a KR bit of research i found out that those people that couldn't log in KR had special (estonian) characters in their name (like äöüõ or šž KR etc), so i added unix charset = UTF8 to the smb.conf and it seemed KR to work (later replaced UTF8 with ISO-8859-15 and it still worked). KR KR The problem i'm having, is that when I (or anybody else) logs into xp KR machine with roaming profile, the default keyboard layout is set to KR US and they can't change it (but that might be because of gpedit KR policies i set up in xp machines). When i log in with local user (to KR xp) then keyboard is fine. I did try to find solution on the KR internet, but the posts i found about this problem were without KR answers. Any kind of help is appriciated KR to fix the keyboard issue (this as nothing to do with the upgrade of the server but with the installation of the client and probably users didn't had the password they thought they had) run the following command on every client reg.exe ADD HKU\.DEFAULT\Keyboard Layout\Preload /v 1 /t REG_SZ /d 041d /f --^ replace 041d (swedish) with the code for estonian. I leave that to you and google. Your other problem is that you probably didn't preserve the SID of you domain and ended up with a new domain (that's why you needed to rejoin clients) the profile of all your user is a new one NTUSER.DAT contains now to sets of registry keys. one corresponding to your old SID and the one to the new. try to restore the original SID on the server. Best regards! -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba 3 with Windows 2008 Enterprise Terminalserver
On Fri, 18 Feb 2011 16:11:31 +0100 Schechtmann alexander.schechtm...@unimedizin-mainz.de wrote: S i've decide to write to the samba lists in the hope of Your help. S Specifically i have at the moment really a problem between Samba 3 S (version 3.2.3-3) and Windwos 2008 Enterprise Terminalserver, namilly S User, that logon on Samba PDC, could be authenticated, but don't get S policy from Samba Netlogon. With both other Terminalserver (Windows S Server 2003) works policy faultless. old style NT4 policies aren't useed by newer OS versions (vista, seven, 2008) you'll need to use a samba4 or a Microsoft AD domain. or you could ,as we do, use start scripts to enforce machine policies and login scripts for users ones. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows 7 problems
,00,79,00,20,00,56,00,69,00,64,00,65,00,6f,00,73,00,00,00 Personal=hex(2):25,00,48,00,4f,00,4d,00,45,00,44,00,52,00,49,00,56,00,45,00,\ 25,00,5c,00,4d,00,79,00,20,00,44,00,6f,00,63,00,75,00,6d,00,65,00,6e,00,74,\ 00,73,00,00,00 {374DE290-123F-4565-9164-39C4925E467B}=hex(2):25,00,53,00,79,00,73,00,74,00,\ 65,00,6d,00,44,00,72,00,69,00,76,00,65,00,25,00,5c,00,4c,00,6f,00,63,00,61,\ 00,6c,00,20,00,48,00,6f,00,6d,00,65,00,73,00,5c,00,25,00,55,00,73,00,65,00,\ 72,00,4e,00,61,00,6d,00,65,00,25,00,5c,00,44,00,6f,00,77,00,6e,00,6c,00,6f,\ 00,61,00,64,00,73,00,00,00 --- -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Issue upgrading to samba 3.5.5
On 10/10/2010 11:06 AM, Sylvain RICHAUD wrote: I'am in ADS mode of samba. My problem is : - I have a windows server which use a local account to launch a service. - The service launched by the local must send file to a samba share. - I have created a user in my Active Directory which have the same login/password than my local server account. your service try to authenticate on the samba server as service that's interpreted as SAMBASERVER\service on the samba server this user doesn't exist on your configuration. (on older samba versions you couldn't log in as SAMBASERVER\USER on member servers or at least DOMAIN\USER was the default, someone illuminated on arcane samba details could elaborate for everybody's benefit.) you could: 1- create an account with the same name and password, not in AD, but on the samba server local password databases unix and samba (create the SAMBASERVER\service user) 2- if your windows server is an AD-member a) use an AD user account to run the service b) use sytem to run the service on the windows server and create a share writable for the machine account of the windows server it should work with W2K8 and probably not with W2K3 (I use this with windows seven, the system account of the clients write logs on a samba server only accessible to machine accounts. I needed an other way around for XP) -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows 7 cannot connect to domain member
On 10/5/2010 1:42 PM, Michel Correge wrote: When I try to connect some share (user's home) from the Windows box, I get strange results : - If the share is on the PDC, I can connect giving Username and Password - If the share is on a member of the domain different from the PDC, connection fails. for clients not member of the domain, you need to specify the domain in the username box when connecting to a member server. DomainName\Username when the domain name is unspecified the member server uses MemberServerName\UserName and that don't work (if you do not define such an user on the member server local password database) this behavior is rather new for samba but normal for a windows server. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] enable client to join domain with no or any password?
On Tue, 17 Aug 2010 13:33:25 -0700 David Mathog mat...@caltech.edu wrote: DM I am trying to automate W7 joining to our Samba domain. It works fine DM through the Windows GUI from the W7 workstations. However, for a script DM one would have to store password used for domain access, and since that DM is the server's root password, I really don't want to hard code that DM into a file. Grant the right to put a machine in the domain to a special user with no other privileges on the PDC or on the clients. it doesn't need to be able to login on the PDC or the clients the storage of the password of such an account is a lesser problem. SeMachineAccountPrivilege This right controls whether or not the user can join client machines to a Samba-controlled domain http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/rights.html -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] windows 7 and printer sharing
On Tue, 05 Jan 2010 12:03:38 +0100 Christophe Baegert c.baegert-lis...@lixium.fr wrote: CB Hi, CB On a linux server with CUPS, I installed Samba to share it with windows CB computers. CB I managed to share it with my Macbook on MacOS 10.4, with this address : | CB smb://login:passw...@name _of_server/name_of_printer| CB So I think my server is well configured. CB BUT I don't even see my network on a Windows 7 computer (I applied the In your case I wouldn't use smb for printing. both OSX and windows (at least recent ones) can print directly to a CUPS server. the main advantage of SMB printing is automatic installation of drivers. this is worth the trouble only if you have many clients. (and to my knowledge it doesn't work with 64bits OS) Use http://your.cups.server/printers/your_printername to connect to your cups server. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Matlab not working when run of a samba 3.4.x share
Matlab when installed on a samba 3.4.x share is not working. (it works with 3.3.x and earlier versions) The application stops with a java related message. (matlab -nojvm works) the detailed log messages and Google led me to bug 6837. Even if this bug is said to be Windows 7 related, the patch for it fixes the matlab problem in 3.4.x (which is present in XP and probably affects other java applications) This message is for the record as the problem is to be fixed in 3.4.4 -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba 3.4.2 with Solaris ZFS Snaphots
On Wed, 18 Nov 2009 11:35:49 +0100 Jean-Christophe Delaye jean-christophe.del...@eurecom.fr wrote: JCD Hi, JCD I'm trying to make samba working with Solaris ZFS Snaphots. JCD Solaris 10 is running on a x64/X86 box which is both Samba (3.4.2) JCD server and Zfs server. JCD I created home/delaye filesystem with home zfs pool. . JCD Can anyone help to troubleshoot this? Does anybody have a running setup JCD for Solaris zfs snapshots ? We are extensively using ZFS snapshots with samba, it works like a charm. We use the patches from http://www.edplese.com/samba-with-zfs.html this give us freedom in naming convention they still can be applied (manuallly) to samba-3.4.x/source3/modules/vfs_shadow_copy.c [homes] comment = Home directories browseable = no public = no read only = no inherit permissions = yes delete readonly = yes map archive = no map readonly = no # vfsobject = shadow_copy, zfsacl vfsobject = shadow_copy shadow_copy: sort = desc shadow_copy: path = .zfs/snapshot shadow_copy: format = $Y-$m-$d hide files = /?esktop.ini/*utloo*.lnk/*Briefcase*/*RECYCLE*/ -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Fwd: most common way to implement 'net time' privileges
On Fri, 28 Aug 2009 10:29:56 +0200 Witold Tosta witold.to...@neostrada.pl wrote: WT Liutauras Adomaitis pisze: WT So I change the their local policy setting. Dumb solution, bo I cannot do WT that other way. WT WT Do do it by hand on all computers localy? WT Unfortunately for now I do it that way :-( WT Maybe someone have some civilized solution ? WT Witek ntrights -u Domain Users +r SeSystemTimePrivilege -m \\computer Use Wpkg WWW.wpkg.org to automate this (and many other things) but why give this right to users? you could synchronize clocks by other means run the following on every client (via Wpkg or psexec or ...) sc config w32time start= auto net time /setsntp:your.favorite.ntp.server net stop w32time net start w32time w32tm /resync /nowait -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Fwd: most common way to implement 'net time' privileges
On Fri, 28 Aug 2009 15:23:33 +0300 Liutauras Adomaitis liutauras.adomai...@gmail.com wrote: LA run the following on every client (via Wpkg or psexec or ...) LA LA sc config w32time start= auto LA net time /setsntp:your.favorite.ntp.server LA net stop w32time net start w32time LA w32tm /resync /nowait LA LA Ok, I changed my root preexec scriipt to include command to sync time LA with winexec tool. Seems to be working. This is not a proper way, but LA if it works I can call it quick and dirty way to sync time. I couldn't LA test it with vista machines, but i'll do it later. You only need to do it once! those commands configure the ntp service on windows clients and that's is OMHO the correct way to do the synchronisation. (it has to be the proper way,it's the way you do it on Linux :-) it works on Vista on W2K you have to replace w32tm /resync /nowait by w32tm -once -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
RE: [Samba] default printer selection based upon computer a user logs into
-Original Message- From: samba-bounces+jj=isy.liu...@lists.samba.org [mailto:samba-bounces+jj=isy.liu...@lists.samba.org] On Behalf Of Adam Williams Sent: Friday, April 24, 2009 6:15 PM To: Samba Subject: [Samba] default printer selection based upon computer a user logs into We are using roaming profiles. I have a user that logs onto two computers that are in different buildings. Computer 1 is collections w/ default printer HP Laserjet 4000DTN (10.8.9.223) and Computer 2 is salesshop w/ default printer HP Laserjet 4100DTN (10.8.3.31). The user complains that when she logs into salesshop, does her work, logs out, and then logs in at the collections computer, her default printer is no longer the HP Laserjet 4000DTN (even though as administrator on collections, the 4000DTN is the default printer). Is there some sort of way to collections to use the 4000DTN as the default printer? -- The default printer is a per user choice! you can set the adequate printer for a specific computer or group of computers in the logon script. i.e. :: if computer name begins with FREJA set default printer to freja @if %computername:~0,5%==FREJA %SystemRoot%\system32\cscript %SystemRoot%\system32\prnmngr.vbs -t -p \\printserv\freja @if %computername:~0,7%==TELEKOM %SystemRoot%\system32\cscript %SystemRoot%\system32\prnmngr.vbs -t -p \\printserv\telekom Regards! -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re[2]: [Samba] net use /home ?
On Fri, 13 Feb 2009 08:44:07 -0500 John Drescher dresche...@gmail.com wrote: JD It works alright, and all users have full access to their own home JD directories. Also, say user elsa logs in. She won't get a mapping to JD \\server\elsa via the 'net use j: /home' command, but she will get full JD access with 'net use j: \\server\elsa' JD JD Go figure.. Also, nothing really changed on the system apart from upgrading JD the samba package from 2 to 3.2.8, that's the strange thing.. JD JD I am sorry.. I see now. JD I have always used the UNC path. Samba 3.2.4 on Vista SP1 C:\Users\jjnet use g: /home Drive g: is now connected to \\PDC\jj. Your home directory is g:\. If it´s a samba issue (which I doubt) it have to be between 3.2.4 and 3.2.8 What's the result of set home on your windows machines? C:\Users\jjset home HOMEDRIVE=h: HOMEPATH=\ HOMESHARE=\\PDC\jj I suppose the command: net use drive /home uses the value of HOMESHARE -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Vista won't copy roaming profile to server
On Mon, 9 Feb 2009 03:31:58 -0800 (PST) Michal Patera michal.pat...@netlogic.cz wrote: MP Hello, MP fresh installed Samba 3.024 o Debian system as PDC with roaming profiles. MP Vista only creates user.V2 in [profiles] but not copy profile after logoff. MP Directory is writable and XP works good. Any ideas? Thanks. This can be caused by a lot of things :-( First to reassure you, Vista roaming profiles are working with a samba PDC. Works for us on solaris samba 3.2.x and at least 3.0.30, perhaps earlier versions to, don't remember and don't use notes :-). We use the following registry key: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System] CompatibleRUPSecurity=dword:0001 (perhaps unnecessary, profile acls should take care of that) and the following smb.conf: domain logons = yes logon drive = h: logon home = \\PDC\%U logon path = \\PDC\Profiles\%U\%a logon script = LOGON.BAT [Profiles] comment = Roaming Profile Share path = /zpool1/Profiles profile acls = Yes map read only = Permissions read only = no browseable = no csc policy = disable hide files = /?esktop.ini/$RECYCLE.BIN That's for the server side! On the client side bad drivers are causing problems! We have to disable the Nvidia Display Driver Service as it impedes uploading of the profile. Why a certified driver does this? -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: j...@isy.liu.se 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re[2]: [Samba] Samba and Vista profile probs
On Mon, 21 Apr 2008 11:23:57 +0200 Collen Blijenberg [EMAIL PROTECTED] wrote: CB Well i must say, it looks like the removal CB of the profile list works. ! CB but the mentioning of the nt4 policy's not working with vista CB was a big bummer... CB isn't there an otherway to make policy's work with vista ?? CB like adding the SYSVOL share orso ?? CB or using the policy editor of xp/vista in combination with samba. CB Thx, Collen One solution is to use Wpkg for this. Have a look at: http://wpkg.org/Adding_Registry_Settings Wpkg works well with Vista (if run as SYSTEM) even with UAC enabled. Wpkg intalls and maintains software on clients computers and is IMHO an indispensable companion to a samba domain server. Regards! -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba and Vista profile probs
CB Hi all, I've got some problems with vista sp1 + samba 3.0.28a CB vista will not save the profiles nor load them. ! CB I'm all familiar with the .V2 thing. CB vista however does create the profilename.V2 directory, but does not CB populate it with the data CB Xp machines work like a charm however. CB profiles path's are: \\server\profiles\testuser CB so the problem with the .V2 part is not share related, coz they are a CB dir in a share. CB we do get logged in with a temp profile. so authentication works (little CB slow do...) CB do i need to alter the vista policy's or something ?? CB if i browse manually to the profile share, i will be able to create dirs CB and files define those keys on clients: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System] WaitForNetwork=dword: CompatibleRUPSecurity=dword:0001 If you remove %USERPROFILE% (C:\users\john) for an user this user will be subsequently logged in with a temporary profile unless HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\SID of user is also removed. Unfortunatly Vista doesn't obey Netlogon\NTConfig.pol. you have to apply policies with other methods. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Running a login script
On Tue, 18 Mar 2008 11:46:58 + (GMT) Mike Stewart [EMAIL PROTECTED] wrote: MS Hello all, MS We are trying to find a way to run login scripts for our users but all the How-To files seem rather complicated :-( MS We have been using Samba for several years and all our users have Windows 2000 PCs, Samba accounts etc. They log into their Windows with a username/password OK. The Samba server is set up with the same username/password combination as their PCs so they don't have to supply username/password again and drive mappings are saved by Windows. A very simple system which has proved easy to maintain. MS We are trying now to introduce Generic PCs which any user can access (hot desking I think it is called). So, we want the Samba server to prompt the user for a username/password combination when they click on the desktop shortcut to the server (we've accomplished that part easily) and then automatically run a login script to map their drives - that's the part we are struggling to find a solution to. MS All the examples we've found so far refer to Domain Controllers - Do we have to set up the server as a Domain controller, do we have to create machines accounts etc ? A domain controller would be my prefered solution. But you can use login scripts without. Run gpedit.msc on computers needing the login script. Local computer policy -- user configuration -- windows settings -- scripts -- logon -- add define the location of your script. Regards! -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re[2]: [Samba] Vista, 35 second login delay, domain only.
On Thu, 6 Mar 2008 20:10:43 +0100 odi [EMAIL PROTECTED] wrote: o Hello, o maybe you are not alone with that behaviour, seems to be same with o Solaris10/Samba3.0.25c and Vista domain client. Currently I've no solution o for this problem, o regards o Am Donnerstag, 6. März 2008 17:05:07 schrieb [EMAIL PROTECTED]: o Hello, o o I've spent time trying to find an answer to this one, but no luck. o The main problem is that when any user logs into Vista with a domain o account, there will be ~35 second delay where the system just sits at o the welcome screen with the spinning circle. (after typing their o password) o o This happens on Vista sp1, and earlier. Also on Samba 3.0.24, 3.0.28 and o 3.2. I'm pretty sure the DNS is okay, as everything else seems fine. Even o XP machines login normally. o Regardless of profiles being roaming or local, the delay is still there. o tcpdump shows no activity during this delay. o I've tried removing all traces of ipv6, from both the server and the o client. All firewalls are off on both server and client. o I'm pretty sure its Vista thats doing something, but just have no clue o where to look. o Local accounts login within a few seconds, and the domain logins are o almost bareable at about 35 seconds, but really quite annoying. :( o o I'm curious to know if anyone else experiences this or not? o o Thanks! o Mike We experience the same problem with Vista clients and samba 3.0.28 on Solaris 10 I havn't looked into it as I concentrate on Vista packages installation for the time being but yes it's irritating. Logout with roaming profile is also slower than for XP. NTconfig.pol isn't used. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] windows printer config management
On Tue, 05 Feb 2008 14:39:39 +1100 Brian May [EMAIL PROTECTED] wrote: BM Hello, BM I sent this request to my local linux user group: BM http://lists.luv.asn.au/wws/arc/luv-talk/2008-02/msg0.html BM Unfortunately it looks like nobody is able to answer, so I will try BM here: BM Does anybody know of any sane solution for (globally) managing the BM configuration of printers on a large number of Windows computers? BM My current solution is BM 1. create samba server with printer shares BM 2. install windows printer drivers to samba server to allow automatic BM installation BM 3. on windows computer, drivers have to be installed from the samba server, BM* installation of drivers as non-administrator won't work BM* log in as administrator, install printer, which tries to install driver. BM* first time, windows complains that the server doesn't have the drivers. BM* retry, it works perfectly on second try. BM* log as administrator, log it as user, printer doesn't exit. BM* install printer again as user, this time it uses the existing drivers. BM 4. if any changes required, e.g. printer is replaced, repeat then on BM every computer for every user. BM This is insane. Ok, so maybe I should be able to fix the problem with BM the driver installation not working the first time (any ideas?), but BM this is only a small step in the entire process. BM cups makes this so much easier :-(. BM Any ideas? BM Thanks. BM -- BM Brian May [EMAIL PROTECTED] -If your computers and the samba printserv are domain members of the same domain, even ordinary users can install drivers from the samba server. (This is default) -You can allow installation from others domain (some tweaks on clients) -You can run start scripts on every clients to install drivers (and many others things). Put your clients on a domain (why not a samba one) use wpkg www.wpkg.org . it's a great help in managing clients! cups is the most troublesome part of our print system, not samba, not windows :-( Regards! -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] the architecture of remote W2K3 is now detected as Win2K instead of Win2K3
Hi all, We are using the following smb.conf definition. logon path = \\somesambaserver\Profiles\%U\Profile\%a %a maps now to Win2K for Win2K3 R2 SP2 servers. The mapping has been correct in the pass. We don't noticed the problem until recently when we replaced a Win2K terminal server in one of our samba domains. The fault has been there for at least a year. I don't know if it's caused by samba (3.0.28) or Win2k3 upgrades (R2 SP2). Until now the missfeature caused no harm and was therefore unnoticed. The problem showed up recently when we replaced a Win2K terminal server by a Win2K3. This is not a big problem for us but it should nonetheless be eventually fixed. Thanks! -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re[2]: [Samba] Problem with netlogon\logon.bat not mapping all drives
On Fri, 31 Aug 2007 11:52:34 +1000 Jai Lamerton [EMAIL PROTECTED] wrote: JL Does that mean that the H: drive is already mapped before the script was JL run? JL yes! if you have a logon drive = h: directive in smb.conf. JL Regards, JL Jai -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Log files created for every machine not joined to the domain...
On Mon, 20 Aug 2007 21:55:37 + (UTC) Matt Anderson [EMAIL PROTECTED] wrote: MA Yes, It does. I assume they are all on same subnet? Are you using WINS? MA MA John MA Well, there are multiple subnets, but yes, the ones generating log files are all MA part of the same subnet. MA And no, we're not using WINS. (At least I don't have anything specified for MA wins server and wins support is no in smb.conf). MA So, I'm not sure what's going on... thanks again for all of your quick replies! MA -Matt Windows XP automatically searches the network for shares and printers upon connecting to the network. To disable XP automatic discovery: * In Explorer, click Tools * Click Folder Options * Click the View tab, * Uncheck Automatically Search for Network Folders and Printers in Advanced settings list. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] prepare for vista
On Sun, 29 Jul 2007 12:47:11 -0500 linux [EMAIL PROTECTED] wrote: Am in testing phase with just a few lucky users to go live with samba. However, I just had a thought. What happens when we eventually do vista? Seems like I may need to add %a to my path = statement, but it did not work. No profile was created for the user under the windows version directory.. Here's my testing smb.conf. Please have a look and see what I may need to do to separate the profile according to the operating system the user is using. You don't need the %a (if it's only to separate Vista from other versions) Vista adds a .V2 to the profile path an user profile reside in \\PDC\Profiles\username.v2 for vista and in\\PDC\Profiles\usernamefor XP Vista seems to work satisfactorily with a samba PDC. the logon time is higher than with XP but everything we tested worked. (We don't use Vista in production and didn't discovered the probably numerous problems) relevant parts of our smb.conf: domain logons = yes logon drive = h: logon home = \\%L\%U logon path = \\%L\Profiles\%U [Profiles] path = /export/Profiles comment = Roaming Profile Share profile acls = Yes create mode = 0600 directory mode = 0700 read only = no browseable = no csc policy = disable hide files = /?esktop.ini/ -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Fwd: Samba 3.025 wbinfo checking the trust secret via RPC calls failed
On Thu, 31 May 2007 17:53:10 -0400 Gaiseric Vandal [EMAIL PROTECTED] wrote: GV I joined 2 Windows 2003 machines to the domain. I was able to log as GV administrator and root but no other accounts, whether local or GV not. The user accounts them self seem OK- it just seems to be a GV winbind or trusts issue. You are, perhaps, looking at the wrong place! Are you trying to log in with remote desktop? In this case users have to be members of the Remote Desktop Users group. try to log in att the console to see if it make a difference! Regards! -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re[2]: [Samba] Altered behavior in 3.0.25 and 3.0.24-gc-1
On Mon, 21 May 2007 12:31:57 -0500 Gerald (Jerry) Carter [EMAIL PROTECTED] wrote: GC Jean-Jacques Moulis wrote: GC By mistake or by design membership in a Windows Primary Group seems to be mandatory! GC GC We are using printservers configured as member servers of Samba domains. GC GC with the following configuration GC GC security = DOMAIN GC password server = PDC GC encrypt passwords = yes GC map to guest = Bad Password GC GC The Samba PDCs use plain smbpasswd files. GC GC Since upgrading to 3.0.25 and regressing to 3.0.24-gc-1 some users couldn't GC print (strange considering map to guest = Bad Password) GC GC they got an NT_STATUS_UNSUCCESSFUL in log files and were refused printing. GC GC The common denominator for users with print problems was GC the lack of mapping from their GID to a SID GC GC net groupmap add ntgroup=A new group unixgroup=gidgroupname GC solved the problem but it took a while to find out :-) GC Please test the gc-2 snapshot. This might be related to GC the regression from the CVE-2007-2444 patch. The gc-2 snapshot gives the same result for people with an unmapped GID (or not explicitly in the Domain User group -513) I have a log level 10 for both the PDC and the domain member. How should I made it available to you? As I said, mapping the GID to a SID solves the problem, I'm prepared to accept the behavior as feature :-) -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Altered behavior in 3.0.25 and 3.0.24-gc-1
By mistake or by design membership in a Windows Primary Group seems to be mandatory! We are using printservers configured as member servers of Samba domains. with the following configuration security = DOMAIN password server = PDC encrypt passwords = yes map to guest = Bad Password The Samba PDCs use plain smbpasswd files. Since upgrading to 3.0.25 and regressing to 3.0.24-gc-1 some users couldn't print (strange considering map to guest = Bad Password) they got an NT_STATUS_UNSUCCESSFUL in log files and were refused printing. The common denominator for users with print problems was the lack of mapping from their GID to a SID net groupmap add ntgroup=A new group unixgroup=gidgroupname solved the problem but it took a while to find out :-) Regards! -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Endless Password Expiration in 3.0.25
On Fri, 18 May 2007 15:25:53 -0700 Jeremy Allison [EMAIL PROTECTED] wrote: JA People who have reported this bug (Endless Password Expiration in JA 3.0.25, bugzilla id #4630) can you please let me know if you're JA working on 64-bit machines please ? I'm trying to track this JA down for 3.0.25a and am working on a theory JA JA Jeremy. we had the problem on solaris 10 machines with 32-bit and 64-bit sambas. but not all servers exhibited the problem. (We still run 3.0.25 on one of them). the problem is somehow related to the history of the server. Recently installed servers with an history starting with 3.0.23 or 3.0.24 worked. servers with a long career suffered the problem. (perhaps a 64-bit episode, but I doubt it). Sun, 04 Dec 0468 is long gone as are the barbarians invasions on a non working server pdbedit gives: Logoff time: Sun, 04 Dec 0468 16:30:07 MET Kickoff time: Sun, 04 Dec 0468 16:30:07 MET Password last set: Tue, 15 May 2007 10:14:46 MEST Password can change: Tue, 15 May 2007 10:14:46 MEST Password must change: Sun, 04 Dec 0468 16:30:07 MET Last bad password : 0 Bad password count : 0 Logon hours : FF A working server gives Logoff time: Tue, 19 Jan 2038 04:14:07 MET Kickoff time: Tue, 19 Jan 2038 04:14:07 MET Password last set: Wed, 05 Nov 2003 13:43:24 MET Password can change: Wed, 05 Nov 2003 13:43:24 MET Password must change: Tue, 19 Jan 2038 04:14:07 MET Last bad password : 0 Bad password count : 0 Logon hours : FF The Servers are identicals (situed at differents sites) with the same smb.conf and smbpasswd file but with differents history and tdb files I don't know where the Password must change value is stored or is calculated the value shown by pdbedit is still wrong after regressing to 3.0.24 (and was probably wrong before upgrading to 3.0.25) but doesn't cause any troubles -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Expired passwords since upgrading to 3.0.25 from 3.0.24
We upgraded ours samba servers to 3.0.25 All of them run on Solaris 10 machines. They are PDC or printservers of differents Domains. We are using smbpasswd files (not LDAP or tdbsam). Two servers (the oldest ones configurationwise) are exhibiting the following problem. Windows user are greated with: Your password expires today. Do you want to change it now? /export/samba/bin/pdbedit -L -v inetadm Unix username:inetadm NT username: Account Flags:[UX ] User SID: S-1-5-21--20246 Primary Group SID:S-1-5-21--513 Full Name:Informationsnät kurskonto Home Directory: \\port\inetadm HomeDir Drive:H: Logon Script: LOGON.BAT Profile Path: \\port\inetadm\NT\profile Domain: ISYEDU Account desc: Workstations: Munged dial: Logon time: 0 Logoff time: Sun, 04 Dec 0468 16:30:07 MET Kickoff time: Sun, 04 Dec 0468 16:30:07 MET Password last set:Tue, 15 May 2007 10:14:46 MEST Password can change: Tue, 15 May 2007 10:14:46 MEST Password must change: Sun, 04 Dec 0468 16:30:07 MET Last bad password : 0 Bad password count : 0 Logon hours : FF A working server gives /export/samba/bin/pdbedit -L -v inetadm Unix username:inetadm NT username: Account Flags:[UX ] User SID: S-1-5-21-...-20246 Primary Group SID:S-1-5-21-...-513 Full Name:Informationsnät kurskonto Home Directory: \\port\inetadm HomeDir Drive:H: Logon Script: LOGON.BAT Profile Path: \\port\inetadm\NT\profile Domain: ISYEDU Account desc: Workstations: Munged dial: Logon time: 0 Logoff time: Tue, 19 Jan 2038 04:14:07 MET Kickoff time: Tue, 19 Jan 2038 04:14:07 MET Password last set:Wed, 05 Nov 2003 13:43:24 MET Password can change: Wed, 05 Nov 2003 13:43:24 MET Password must change: Tue, 19 Jan 2038 04:14:07 MET Last bad password : 0 Bad password count : 0 Logon hours : FF The Servers are identicals (situed at differents sites) with the same smb.conf and smbpasswd file but with differents tdb files I don't know what to check next and where the Password must change value is stored I will for the time being regress to a patched 3.0.24. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] disable printing ?
On Mon, 04 Dec 2006 17:05:39 +0100 Peer-Joachim Koch [EMAIL PROTECTED] wrote: PJK Hi, PJK is it possible to disable the whole printing subsystem ? PJK When our cups server is hanging, the samba print server is also not working, PJK but the file server (which is not printing and also not sharing any PJK printer) is PJK looking for the printer list PJK It's a Novell SLES 9 running samba-3.0.20b-3.4. PJK Bye, Peer compile with option --disable-cups (this is what I do) or put the following in your smb.conf load printers = no printing = bsd printcap name = /dev/null show add printer wizard = no disable spoolss = yes printing = bsd is probably sufficient -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with CHM files
On Fri, 18 Aug 2006 12:05:27 -0300 Facundo Barrera [EMAIL PROTECTED] wrote: FB Hi list: FB First post, hope find a solution FB This is my problem, i've got some chm (Microsoft html help files) and FB i can't see them from my host clients (windows) i can open them but i FB cant see them... this is the error log from samba: FB facu (192.168.0.48) couldn't find service e-books - oreilly amp; cisco FB smbd/service.c:make_connection(798) Not a samba problem see: http://support.microsoft.com/kb/896358 http://www.ec-software.com/products_hhreg.html Regards! -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] [OT] DeleteRoamingCache=1 doesn't work
On Tue, 14 Mar 2006 16:41:44 + Toni Casueps [EMAIL PROTECTED] wrote: TC TC I have a Samba server which I set so that Windows clients have roaming TC profiles. It works but when the user logs off, his personal folder in TC C:\Documents and Settings remains there, although i created the key TC DeleteRoamingCache (as a DWORD) in TC HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\WinLogon TC and set it to 1. TC TC It seems a problem with the Windows client, but I'm not sure so I posted it TC here in case it's a problem with the Samba server. TC TC Has this happened to any of you? TC TC Install the User Profile Hive Cleanup Service. Excerpt from the README file: UPHClean v1.5e readme.txt Updated March 4, 2004 by Robin Caron All feedback appreciated to [EMAIL PROTECTED] WHAT IS UPHCLEAN UPHClean is a service that once and for all gets rid of problems with user profile not unloading. You can download it from: http://www.microsoft.com/downloads/details.aspx?FamilyID=1b286e6d-8912-4e18-b570-42470e2f3582displaylang=en -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] problem with Too many open files
On Sun, 12 Feb 2006 14:31:47 +0100 Hans B. Randgaard [EMAIL PROTECTED] wrote: HBR the error message: HBR Too many open files HBR each time drives are not mapped. HBR In the log files I can see that it has happened even when we ran version HBR 3.0.10. HBR We run Samba on Solaris and have previously increased both rlim_fd_cur HBR and HBR rlim_fd_max to 1024. Do we need to increase these values further ? Build samba in 64bit mode! The Too many open files problem will go far away :-) Don't ask me why or where the limitation lays but that solved our problem. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Usernames Passwords
On Sat, 04 Feb 2006 07:50:10 -0500 Gerard Seibert [EMAIL PROTECTED] wrote: GS Using the following command, I can access a share on one of the WinXPmachines: GS smbclient //SERVER/SHARE -u NAME%PASSWORD GS I now find that I can also access the share using an incorrect 'NAME' or GS 'PASSWORD' or both. In fact, I can just use an incorrect 'PASSWORD' with GS no name, and I can still access the share. GS Obviously, something is configured wrong on the WinXP machine, but I am GS not sure what. Perhaps someone might have a suggestion. Your XP machine is using Simple file sharing! nothing else is available in XP Home Edition! On XP pro revert to classic sharing by turning off simple file sharing in Folder options -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] what to do in worst case scenario: samba pdc not available
On Thu, 12 Jan 2006 17:57:36 -0300 Martin Miethe [EMAIL PROTECTED] wrote: MM Hi, MM MM my question no really concerns 100% to Samba but since I use Samba ... MM I use Samba 3.0.13 as an PDC and have about 40 WinXp Pro Clients. MM I was wondering what happens if the WinXP Pro Clients won´t have any MM connection to the Samba Server anymore. Maybye due an error in the MM network or the PDC died for some reason. MM Is there any way to quickly change the clients profile to a local MM profile? I don´t have profile roaming enabled. All I want is that the MM users can access/login to their profiles if the Samba PDC wouldnt be MM available anymore MM Thanks a lot MM regards, In a typical office environment with XP default settings you don't need to do a thing even with roaming profiles, without is only better. It works, so to say, out of the box. In an environment where people use differents workstations almost everytime, where local copies of roaming profiles are deleted at logoff or folder redirection to the PDC is used the only viable solution is to fix the PDC A.S.A.P. or even faster Expert from MS docs: Interactive Logon: Number of previous logons to cache (in case a domain controller is not available). Windows 2000 Server and Windows XP Professional store previous user logon information locally so that a subsequent user can log on even if a domain controller is unavailable. This setting determines how many unique previous logons are cached. If a domain controller is unavailable and a user’s logon information is stored, the user is prompted by this message: “A domain controller for your domain could not be contacted. You have been logged on using cached account information. Changes to your profile since you last logged on may not be available.” If a domain controller is unavailable and a user’s logon information is not stored, the user is prompted by this message: “The system cannot log you on now because the domain DOMAIN NAME is not available.” In this policy setting, a value of 0 disables logon storing. Any value above 50 stores only 50 logon attempts. The default value is 10 logons. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Restricting logins to certain clients
On Mon, 12 Dec 2005 18:50:55 +0100 Hans Musil [EMAIL PROTECTED] wrote: HM I run samba-3 as PDC for a small domain with 4 clients. User HM A should be allowed to login on all client machines, while HM logins for the privileged user B should be restricted to 2 HM machines for security reasons. Any ideas how to manage HM that? Suggestions for further reading would be highly HM appreciated? A simple solution is to make a logoff in a logon script e.g. if %USERNAME%==B if %computername%==MACHINEX \\server\netlogon\logoff.exe it's a easy to maintain but a determined user B could log in anyway! A sturdier solution: map an Unix group to a Windows group e.g. Undesirables make B a member of Undesirables set security to deny all for the group Undesirables in C: C:\Documents and Settings on all machines where B is unwanted. It's a bit difficult to stay on a machine where you can't read a damn thing :-) -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] run a script with administrator credentials?
On Fri, 20 May 2005 19:05:42 +0200 Tomasz Chmielewski [EMAIL PROTECTED] wrote: TC Is it possible to run a custom script for a given machine when it boots up TC (that is already joined to the domain), with administrator TC credentials (for example, to install software)? A machine script can be run at bootup. It runs with Administrative privileges and can be used to install software (we do!). Use gpedit.msc on the client to define a the startup script --Local Computer policy --Computer Configuration --Windows Settings -- Scripts (Startup Shutdown) The script may reside on a samba share. We are using an imaging system to deploy machines and all new machines have the script defined. You could perhaps copy the file %SystemRoot%\system32\Group Policy\Machine\Scripts\scripts.ini to already deployed machines but I don't know if it's sufficient ex of a scripts.ini: [Startup] 0CmdLine=\\Sambaserver\Publicshare\Startup.cmd 0Parameters= -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linkping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linkping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] MSI deployement with script ?
On Fri, 13 May 2005 07:53:21 -0400 FM [EMAIL PROTECTED] wrote: F Hello, F F Do you have tips or sample script code to deploy MSI (Firefox in my F case) using script ? have a look at: http://wpkg.sourceforge.net/ You could also (as we do) run a machine startup script situated on a samba share (the share as to be accessable by anybody without authentification) for install switches, scripts examples for a particular application: http://www.appdeploy.com/packages/ -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re[2]: [Samba] PDC: Logging out from Windows XP SP2 takes a long time
On Sun, 10 Apr 2005 23:11:22 -0700 Jonathan Johnson [EMAIL PROTECTED] wrote: JJ JJ For this reason, Outlook Express is NOT RECOMMENDED in a roaming JJ profiles environment, as the OE identity cannot be on a network share JJ and synchronizing the files is an excercise in masochism. I have to disagree! We are just doing that, using OE in roaming profile environment and it works like a charm. Well! we are using Imap :-) No need to save the store (in that config it's only a cache) it's redirected on a local directory outside of the profile We redirect the WAB file on a network share. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Privileges problem
On Wed, 09 Mar 2005 11:52:06 -0600 Cesar Sanabria Pineda [EMAIL PROTECTED] wrote: CSP Hi!!! CSP CSP I'm trying to implement a SUS server (local windows update) CSP CSP I-ve already solved my problem to modify registry in order to establish CSP windows update configuration. CSP CSP Now i've a quiestion all my client logon my samba PDC enusing a CSP netconfig.pol isend all configuration everithing works ok. But i've a CSP trouble, my users don't have privileges to install anything and i don't CSP want to give them privileges. So is there another way to update my CSP system , i mean something like sudo o something like that in order to CSP get privileges and install updates? CSP CSP Or is there another way to do that? Why not rely on the automatic update? When making the NTConfig.pol: In Configure automatic updating choose:4 - Auto download and schedule the install You can be kind to users and have a question asked before the probable reboot. Choose: No auto-restart for scheduled Automatic Updates installations This is what we are using and it works without users having any kind of privileges. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Logon script
Software\Policies\Microsoft\Windows\WindowsUpdate ACTIONLISTON KEYNAME Software\Policies\Microsoft\Windows\WindowsUpdate\AU VALUENAME UseWUServer VALUE NUMERIC 1 END ACTIONLISTON PART Set the intranet update service for detecting updates: EDITTEXTREQUIRED VALUENAME WUServer END PART PART Set the intranet statistics server: EDITTEXT REQUIRED VALUENAME WUStatusServer END PART Part (example: http://IntranetUpd01) TEXT END PART END POLICY POLICY Reschedule Automatic Updates scheduled installations KEYNAME Software\Policies\Microsoft\Windows\WindowsUpdate\AU PART Wait after system startup(minutes): NUMERIC REQUIRED VALUENAME RescheduleWaitTime MIN 1 MAX 60 DEFAULT 5 END PART END POLICY POLICY No auto-restart for scheduled Automatic Updates installations KEYNAME Software\Policies\Microsoft\Windows\WindowsUpdate\AU VALUENAME NoAutoRebootWithLoggedOnUsers VALUEON NUMERIC 1 VALUEOFF NUMERIC 0 END POLICY END CATEGORY END CATEGORY - -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re[2]: [Samba] Samba as PDC and BDC on the same network.
On Mon, 07 Mar 2005 08:31:47 + Clement DIEBOLD [EMAIL PROTECTED] wrote: CD Then, if I put : CD @echo off CD echo Script de demarrage CD net use T: \\PDC\temp /PERSISTENT:NO CD CD Then, if the PDC becomes down, this script wouldn't work and i must CD be there to change the name of the server in the script. CD CD So, what should I do ?? CD CD Thanks for the responses. CD CD Any idea ?? CD CD Thanks CD CD Nobody :( A preexec script on the BDC netlogon share could modify the logon script according to the availability of the PDC. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Debugging Privilege and Samba 3.0.11
On Fri, 25 Feb 2005 21:57:03 +0100 Thierry [EMAIL PROTECTED] wrote: T Isn't that pretty much : T -open MMC T -Add the Group Policy snap-in T -Browse to Local Computer Policy\Computer Configuration\Windows T Settings\Security Settings\Local Policies\User Rights Assignment T -Open Debug programs entry T -Add LAB\Debugger Users T Which I've done. T Unfortunately there is that annoying little box on the right saying T Effective Policy Setting which remains NON-checked :-( T (While Local Policy Setting is checked) T T What am I missing that would actually grant these rights locally ? You probably need to reboot for the rights to be effective. Anyway, you could (as we do) add the domain group LAB\Debugger Users to the local group Debugger Users using: Computer management --- Local Users and groups --- groups --- Debugger Users --- Add The change is effective immediatly. Our way to deal with the tools mentioned by JLB [EMAIL PROTECTED] is to automatically reinstall the computer at every boot. (the machines boot only from network). for the screwdriver we have an alarm on the cabinet :-) -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re[2]: [Samba] Windows update
WUStatusServer END PART Part (example: http://IntranetUpd01) TEXT END PART END POLICY POLICY Reschedule Automatic Updates scheduled installations KEYNAME Software\Policies\Microsoft\Windows\WindowsUpdate\AU PART Wait after system startup(minutes): NUMERIC REQUIRED VALUENAME RescheduleWaitTime MIN 1 MAX 60 DEFAULT 5 END PART END POLICY POLICY No auto-restart for scheduled Automatic Updates installations KEYNAME Software\Policies\Microsoft\Windows\WindowsUpdate\AU VALUENAME NoAutoRebootWithLoggedOnUsers VALUEON NUMERIC 1 VALUEOFF NUMERIC 0 END POLICY END CATEGORY END CATEGORY - -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re[2]: [Samba] Creating mandatory profiles (not making profiles mandatory)
On Wed, 02 Feb 2005 16:58:37 +0100 Ilia Chipitsine [EMAIL PROTECTED] wrote: 8) xp behave weird on roaming profiles. even if You reqiure delete cached copies of roaming profiles on exit, xp leaves copy and !!! if You delete network copy of roaming profile (in order to create profile from Default User), xp picks up local cached copy. so, in such case You need to remove both network and local cached copy of profile. no idea how to make xp delete it on exit. XP delete roaming profiles on exit as well (or as badly) as W2k. You need to install the User Profile Hive Cleanup Service. Expert from the README file: UPHClean v1.5e readme.txt Updated March 4, 2004 by Robin Caron All feedback appreciated to [EMAIL PROTECTED] WHAT IS UPHCLEAN UPHClean is a service that once and for all gets rid of problems with user profile not unloading. You can download it from: http://www.microsoft.com/downloads/details.aspx?FamilyID=1b286e6d-8912-4e18-b570-42470e2f3582displaylang=en We are using it with roaming profiles, mixed folders redirection imposed by an adequate NTCONFIG.POL ( we leave desktop in the profile and redirect almost everything else). W2k and XP profiles coexist rather well, NT don't. -- Jean-Jacques Moulis Tel: (013) 281684 ISYFax: (013) 139282 Linköping UniversityE-mail: [EMAIL PROTECTED] 581 83 Linköping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba