Welcome to Crakomili software



Choose language




Crakomili Software Tailored For your needs
Please wait..
Chat Offline
free support chat
samba 2


SAMBA:  (by Andrew Trigell)              
for share for everybody(only 95?) : 
security = share
at /etc/samba/smb.conf :
Join a domain: (9x can login to samba 2.0.x 
domain logon but 2000 & xp cant!!)
open the dhcps ports.
smb.conf: (2.2.*)
workgroup = DOM  --> thats the domain name 
(must not b the smb server name)
server string :ronens server, also at the 
shares u can put a comment
hosts allow 192.168.0.0/255.255.255.0 or 
192.115.135.131 (EXCEPT 192.115.13.13)
security = user
password server = server1        
encripted password = yes
smbpasswd file = /etc/....    -->comment out
unix password sync = yes
password program...   -- > comment out
password chat ...     -->comment out)
nt acl support = no
(netbios name = server1 
-->if u put that u canot change the computer name! 
makes a lot of problems)
local master = yes
os level = 255
domain master = yes
prefered master = yes
domain logons = yes
logon script = login.bat  
--> for all users.for every user:  = %U.bat
wins support = yes
#logon path = \\%L\Profiles\%U  
--> where winNT stores user profile < UNC>
#logon home = \\%L\homes        
--> where win9x stores user profile < UNC>
#logon drive = z:
#=========at share definitions: comment out the folow:
[netlogon]
path = /home/netlogon
public = no
browsable = no
guest ok = yes
writable = no
share modes = no
#[Profiles]
#path = /home/samba/profiles
#browsable = no
---------------
[public]
valid users = mosh,ron..
create mask = 0777 --> it gives rw for all files
directory mask = 7777 
-->(must have the above line) 
    gives u rwx on any directory that 
    a any user opens
...
at logon script u can chose %U and put 
at netlogon users scripts like:noam.bat
mkdir /home/netlogon 
    --> put there the script login.bat:
net use g:\\server1\tmp  
--> the script is better be done from windows!
chmod 777 /home/netlogon/login.bat
after editing the .conf file:
smbadduser ron:ron_avraham:l , 
smbpasswd ron:l (fedora smbpasswd -a avi)
          -x ron   --> to delete 
service smb restart
-testparm /etc/samba/smb.conf 192.168.1.15  
--> which resorces r accessible 2 
 the host.
-to delete smb user u better delete his line from:
/etc/password,/etc/groups,/etc/samba/smbpasswd,
/etc/samba/smbusers
(7.1: encrypted password=yes  smb passwd file = 
/etc/samba/smbpasswd
for 2000: cat /etc/passwd | mksmbpasswd.sh > 
/etc/samba/smbpasswd)
join a nt4 domain:   (rh9 smb-2.2.7..)
-----------------
at smb.conf check these: 
workgroup = NT4-DOMAIN-NAME
security = domain
(encrypted password = yes)
password server = SRV5    
--> the DC server name
prefered master = false
local master = no
domain master = false
dns proxy = no
wins support = yes
---
than: smbpasswd -j NT4-DOMAIN-NAME 
-r SRV5 -U administrator.
if u get a positive answer: u can browse 
smb server with users of nt4
join 2kADserver:
---------------
add the nt4 config to the smb.conf and this also:
winbind uid = 10000-20000
winbind gid = 10000=20000
winbind enum users = yes
winbind enum groups = yes
template homedir = /home/%D/%U  # for homedirs~ 
-u need to create yourself
           # %D is for domain, %U for users map
template shell = /bin/bash
winbind separator =+  # the AD users r viewed as 
               DOMAIN+user_name for priviliges
                      # the + is the
                      separator in linux 
                      (better than /)
winbind cache time = 15
---
at /etc/nsswitch:
passwd: files winbind
shadow: files
group:  files winbind
backup /etc/pam.d/login than change it to 
look like that:
auth required /lib/security/pam_security.so
auth required /lib/security/pam_nologin.so
auth sufficient /lib/security/pam_winbind.so
auth required /lib/security/pam_pwdb.so 
use_first_pass shadow nullok
account required /lib/security/pam_winbind.so
# was already:
password required  pam-stack.so  service=system-auth
session  required  pam-stack.so  service=system-auth
session  optional  pam-console.so
---
-use smbpasswd like above to join the domain
-restart services: smb, winbind
-when u do: getent passwd   
            --> u can c the w2k+smb users
            getent group    
            -->  groups
join domain err:
-cannot join sbs
-when trying to join: could not 
 fetch trust account...:change workgroup=domain
join domain info:
-only work when u are logon to nt domain properly

ERRORS:
* u can c the smb computer but u cannot 
  log on to the domain: open the ~67,138 ports..!
* the computer sais that there is no space 
  left service.c:close_cnum(581)-
  the log becomes huge-check cable connection
INFO:
-smbstatus --> shows connections
2 enter a samba share from other linux box:
-mount //remote_server/share 
/mnt/remote_samba-->mount samba on other box
      -t smbfs -o username,password=blah 
      //xp/share /mnt/xp  -->mount xp share  
above err:will connect & copy but not update 
changes at files !
-enter the terminal with the user who want to 
connect, than:
smbclient //192.168.1.21/share_name (-U username)
       //server1/share -U username -Tcq file_name
-->backup of smb user
         -L //host -U% 
             --> simple view of shared services
         -M name 
             --> send winpopup message
         -M name < text_name 
         (for xp use the machine name) get file
smb :\>help
nmblookup server_name   
--> looks for a server & gives u his ip.



Post a Comment
your name:
Write code here  

     © crakomili software, all rights reserved © 2007