Message Board -  Archive

[ Login ] [ Create Account ]
[ Board List ] [ View Board ] [ Post Reply ]
  Author  Subject: Authentication

Posted on 05-08-2003 09:42 a.m. ET  reply

Original Poster: Derek

Ron -

Ok, last word on this. You probably just need to carefully construct your
samba config file. I am not a fan of SWAT or the other graphical Samaba
config apps (partly because some do not have PDC functions, and also they are
not up to date with the latest versions of Samba and all the options), and
you might be better off if you learn to change the config file manually. It
is a very basic text file with clear headings. (like "home directories",
etc..) The links I specified below on 4/30 are especially good and will help
you do that. Once you change your SAMBA config file, you have to restart the
Samba services, or the changes will not take effect - your RedHat has some
built-in scripts to do that. Bear in mind that other Windows computers on
your LAN could be set as servers or could be interfering with the Network
Neighborhood/Browsing function that you want your Linux server (through
Samba) to manage.
For home directories, you specify where they are on the Linux system and what
they are named in the Windows world on the LAN. If a user logs into your
Linux/Samba PDC, they will be able to access their own home directory - if
that is what you want - but not necessarily anyone else's.
Also, if you are using other than Windows 98 workstations to connect to your
Linux server, there are some extra little things you need to do, you can find
more info on that in the links I gave on 4/30.
To assist you further, here is a very basic config file example and steps you
need to take to get things working.
Config file: (located at: /etc/samba/smb.conf) - usually!

; these are your basic settings - this is a comment line!
; customize them and test it out!
workgroup = my_workgroup_name
netbios name = name_of_this_server
server string = this_server_description
; these are optional performance enhancing items above!
; samba has many optional options for many different scenarios

; now we request PDC functionality!
os level = 64
preferred master = yes
; this means the server will try and be the top banana
; of your LAN in terms of network neighborhood listings of resources
local master = yes
domain master = yes
; be a PDC!
wins support = yes
; if you want wins support - otherwise leave it out
security = user
encrypt passwords = yes
log file = /var/log/samba/log.%m
; where to log activity and errors - again a lot of this is optional!
log level = 2
max log size = 50
hosts allow =
; you need to change this, if you even want this security
; - to your own LAN IP range/netmask - the 127 number is just the
; server itself so it can get into itself!

; here we go with user directories, etc..!
logon home = \%L\%U
logon drive = H:
logon path = \%Lprofiles\%U
logon script = netlogon.bat
; letters with % are variables - read up on them!
; logon script is a DOS type script that you can make each
; workstation execute upon logging in - maybe it will
; map network drives - its up to you! good to have a logon
; script when you have lots of users, so you just change the
; script once - and not fooling with every machine each time

; now the shares section - where you indicate what resources are available
; to your LAN!
comment = myhomedirectories
browseable = no
writeable = yes

path = /home/samba/profiles
writeable = yes
browseable = no
create mask = 0600
directory mask = 0700

comment = networklogonservices
path = /home/netlogon
read only = yes
browseable = no
write list = myname

Pretty simple? Read up on the different options. You can also set it to be a
print server for Windows workstations and do lots of neat things.

For each computer (not user), you must create a "machine account" on the
server and also make sure the name matches the computer name of the
workstation (not user name) - read up on that process.

For each user, you must create a "user account" - for both Linux and Samba -
now, there are ways to have this done automatically - and you can read up on
that. Basically, once you create a user account, a new directory will be
created for that user, and it will become their "home" directory that they
can access.

You can share any directory on the Linux server with the LAN - just specify
it in your [shares] section.

If you read up and understand the concepts, you will be able to get it
running smoothly. It does require some good fundamental understanding of
Linux systems admin and networking, Linux services/daemon management, and
also Windows networking. For that reason, setting up Samba for a LAN is a
great way to learn a whole lot about Linux and high performance networking.

< Previous 1 Next >

Site Contents