Re: [Samba] usermgr.exe
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Thursday 02 September 2004 09:13, komal wrote: > Hi > Thank you for answer. I have doubts about samba. I want to know what > is a difference between user account and machine account? Why we > require add user,add group etc. scripts? I'm not sure whether it is really necessary to supply all of these parameters, but at least the "add user script" is very important, because Samba has to save the file permissions in a Unix fs (ext3, reiserfs etc) at last. So we need an uid, and the right group would also be nice. These settings become crucial if you run NFS and/or NIS, as these systems are based on the Unix account settings of the server. Without the script parameters in smb.conf, the Windows and Unix user accounts get out of sync (if you use tools like the NT User Manager). I'm not an expert with Samba internals, but machine accounts are necessary for every NT-derived server (NT, 2000, XP, 2003) in your domain. The "Unix machine accounts" (corresponding to the entries in your passdb) consist of the computer name and are followed by a "$"-sign. Harald -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQFBN76Opy/Gjo6hsHYRAiGHAKCcAiU5CYlgEbHQIoGYBHKosHUPegCdG/yr waSWfjYpC6eQBIfhlc1Q6Mw= =m4B/ -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] usermgr.exe
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wednesday 01 September 2004 23:37, rruegner wrote: > Hi, it is the old nt admin tool > to create users and groups from a windows client > to admin a windows domain server. > Very usefull. > Regards But to take full advantage of it, you have to set the parameters "add user script", "delete user script", "add user to group script" and so on. These are my settings: smb.conf: [global] ... add user script = /etc/samba/smbuseradd.sh %u add machine script = /usr/sbin/useradd -g machines -c "Machine" - -d /dev/null -s /bin/false %u delete user script = /etc/samba/smbuserdel.sh %u #delete user script = /usr/sbin/userdel %u add group script = /etc/samba/smbgroupadd.sh "%g" delete group script = /usr/sbin/groupdel "%g" add user to group script = /usr/bin/gpasswd -a "%u" "%g" delete user from group script = /usr/bin/gpasswd -d "%u" "%g" set primary group script = /usr/sbin/usermod -g "%g" "%u" ... My custom scripts create quota entries and the user directories beside the creation/deletion of the normal Unix user account. -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQFBNmRHpy/Gjo6hsHYRAvoOAJ9S1WJvSs+zuA4Xo1dsdJKcDCiO1gCeMNgT 52E80hUtCMJ1gfpWUEU+4lE= =M1Ut -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] "Full name" environment variable?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi again, I've solved my problem: I was using smbpasswd, because I just migrated to Samba 3.0. After I converted my password databse to tdbsam, the full name and the description field in usrmgr are handled correctly. Even if the GECOS field is still a dummy entry, I could change it with a script that parses the output of pdbedit -L. But this is not needed at the moment. Harald -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQFBMi0Npy/Gjo6hsHYRArLLAJ9+TiIeTutOfsd43XqyOB6wguSMYQCfSLkh RKbKz97t4dZhayQUA/AyFdw= =jjgY -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] "Full name" environment variable?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi all, I managed to write a smb.conf so that the User Manager for Domains (NT Tool) can add users to the domain without any errors, but I don't know how the full name field (that is obtained from /etc/passwd) can be used . %$(ENVVAR) sounds to me like the right way to go, but I'm not an expert. I haven't found anything in that direction in the manpages or on Google, so your help would be very appreciated. Cheers, Harald -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQFBL255py/Gjo6hsHYRAjBJAJ9fskpkc8j79E/jQPeM0mjoZGmAZwCeJFhC Gw3l+TfSi7XtBQbV/hjQuCI= =MCUu -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] AD Question
On Sunday 27 October 2002 16:37, Jay Ts wrote: > Samba as a PDC. Samba has no limitation (AFAIK) to the number of > clients. There are no licensing fees - this isn't Microsoft, you know? ;) I know, but I thought Microsoft would mess the thing up with the 5 CALs on the AD server. :) > You might have some trouble with multiple domains, though, since > Samba doesn't support Windows NT trust relationships. There may > be some workarounds to that, and maybe someone else can comment on it. According to the roadmap, NT 4.0 trust relationships are already supported. But perhaps I should shut up and test it on my own... ;) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] AD Question
On Sunday 27 October 2002 01:06, you wrote: > However, you can join Samba servers as domain member servers in an > Active Directory domain, even with Windows 2000 running in Native Mode. > In this case, Samba makes use of Windows 2000's PDC emulation mode. With that, is it possible to create e.g. 3 domains, each with a Samba PDC (or emulated)? The most important thing is that still more than 5 clients can log on to the domains. In my scenario, is there any benefit of the AD left? I'm kind of experienced with the old Samba 2.2, but a complete newbie to Samba 3.0. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] AD Question
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Is it possible to run a Active Directory in native mode by a Windows 2000 server (with 5 CALs), with multiple Samba 3.0 servers, each serving as a PDC for its domain? Anyway, is it legal to login with e.g. 50 clients to the Samba servers, when you have only 5 CALs? Harald -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE9uwD8py/Gjo6hsHYRAnb1AJwJbSWvBRPCJk74IejB2QdHCDyEHwCgl4jd FxVu0gc5GJjVKB9dbzCC438= =USiM -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba