Since everyone seems to only post problems to this list, I thought that I would try and post a number of solutions at once. This is my working samba configuration file (minus key indentyfying information). It may not be perfect, but it is as close as I have been able to get it to perfect, and that is after working with samba for a few years. This configuration has my server setup as a PDC (with roaming profile support that we actively use), wins server, and a print server. I may have forgotten a few things, but those are the main jobs it handles. The only problem I have had with this configuration was that sometimes the win 2k clients have had trouble with updating the roaming profile logins at log off, but I think that I have recently fixed this when I turned off the hidden and system attribute mapping. I do not claim to be any guru, all I did was follow the instructions found in the samba documentation. I thought that a known generally good configuration file could help a number of the people on this list who are having trouble. If this configuration helps you please let me know. If you have any trouble with it, I can try to help, but I can't promise anything. Jason Corekin # Samba config file created using SWAT # from 192.168.1.91(192.168.1.1) # Date: 2002/07/22 00:33:43 # Global parameters [global] coding system = client code page = 850 code page directory = /etc/codepages workgroup = SOMETHING netbios name = SERVER netbios aliases = netbios scope = server string = Samba Server interfaces = eth1 127.0.0.1 bind interfaces only = Yes security = USER encrypt passwords = Yes update encrypted = No allow trusted domains = Yes hosts equiv = min passwd length = 5 map to guest = Bad User null passwords = No obey pam restrictions = Yes password server = smb passwd file = /etc/samba/smbpasswd root directory = pam password change = Yes passwd program = /usr/bin/passwd %u passwd chat = *New*password* %n\n *Retype*new*password* %n\n *passwd:*all*authentication*tokens*updated*successfully* passwd chat debug = No username map = /etc/samba/usernamemap password level = 15 username level = 15 unix password sync = Yes restrict anonymous = No lanman auth = Yes use rhosts = No admin log = No log level = 1 syslog = 3 syslog only = No log file = /var/log/samba/%m.log max log size = 0 timestamp logs = Yes debug hires timestamp = No debug pid = Yes debug uid = No protocol = NT1 large readwrite = No max protocol = NT1 min protocol = CORE read bmpx = No read raw = Yes write raw = Yes nt smb support = Yes nt pipe support = Yes nt status support = Yes announce version = 4.5 announce as = NT max mux = 50 max xmit = 65535 name resolve order = lmhosts host wins bcast max packet = 65535 max ttl = 259200 max wins ttl = 518400 min wins ttl = 21600 time server = Yes unix extensions = No change notify timeout = 60 deadtime = 0 getwd cache = Yes keepalive = 300 lpq cache time = 10 max smbd processes = 0 max disk size = 0 max open files = 10000 read size = 16384 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 SO_KEEPALIVE stat cache size = 50 use mmap = Yes total print jobs = 0 load printers = Yes printcap name = /etc/printcap disable spoolss = No enumports command = addprinter command = deleteprinter command = show add printer wizard = Yes os2 driver map = strip dot = No mangling method = hash character set = mangled stack = 50 stat cache = Yes domain admin group = +groupname domain guest group = machine password timeout = 604800 add user script = /usr/sbin/useradd -d /dev/null -g 506 -s /bin/false -M %u delete user script = logon script = logon.cmd logon path = \\%L\profiles\%u logon drive = R: logon home = \\%L\%U domain logons = Yes os level = 64 lm announce = Auto lm interval = 60 preferred master = True local master = Yes domain master = True browse list = Yes enhanced browsing = Yes dns proxy = Yes wins proxy = No wins server = wins support = Yes wins hook = kernel oplocks = Yes lock spin count = 3 lock spin time = 10 oplock break wait time = 100 add share command = change share command = delete share command = config file = preload = lock dir = /var/cache/samba pid directory = /var/run/samba utmp directory = wtmp directory = utmp = No default service = message command = dfree command = valid chars = remote announce = 192.168.1.1/networkname remote browse sync = socket address = 0.0.0.0 homedir map = time offset = 0 NIS homedir = No source environment = panic action = hide local users = No host msdfs = No winbind uid = winbind gid = template homedir = /home/%D/%U template shell = /bin/false winbind separator = \ winbind cache time = 15 winbind enum users = Yes winbind enum groups = Yes winbind use default domain = No comment = path = alternate permissions = No username = guest account = guest invalid users = valid users = +groupname guest @ntadmin root admin users = Jason @ntadmin root read list = write list = printer admin = @ntadmin +groupname SOMETHING\myusername myusername root force user = force group = read only = Yes create mask = 0744 force create mode = 00 security mask = 0777 force security mode = 00 directory mask = 0755 force directory mode = 00 directory security mask = 0777 force directory security mode = 00 force unknown acl user = 00 inherit permissions = No inherit acls = No guest only = No guest ok = No only user = No hosts allow = 192.168.1.0/255.255.255.0 hosts deny = status = Yes nt acl support = Yes block size = 1024 max connections = 0 min print space = 0 strict allocate = No strict sync = No sync always = No write cache size = 0 max print jobs = 1000 printable = No postscript = No printing = lprng print command = lpr -U%U@%M -P%p %s -V lpq command = lpq -U%U@%M -P%p lprm command = lprm -P%p %j -U%U@%M -V lppause command = lpc -U%U@%M hold %p %j lpresume command = lpc -U%U@%M release %p %j queuepause command = lpc -U%U@%M holdall %p* queueresume command = lpc -U%U@%M noholdall %p* printer name = use client driver = No default devmode = No printer driver = printer driver file = /etc/samba/printers.def printer driver location = default case = lower case sensitive = No preserve case = Yes short preserve case = Yes mangle case = No mangling char = ~ hide dot files = Yes hide unreadable = No delete veto files = No veto files = hide files = veto oplock files = map system = No map hidden = No map archive = Yes mangled names = Yes mangled map = browseable = Yes blocking locks = Yes csc policy = manual fake oplocks = No locking = Yes oplocks = Yes level2 oplocks = Yes oplock contention limit = 2 posix locking = Yes strict locking = No share modes = Yes copy = include = exec = preexec close = No postexec = root preexec = root preexec close = No root postexec = available = Yes volume = fstype = NTFS set directory = No wide links = Yes follow symlinks = Yes dont descend = magic script = magic output = delete readonly = No dos filemode = No dos filetimes = No dos filetime resolution = No fake directory create times = No vfs object = vfs options = msdfs root = No [homes] comment = User Home Directories guest account = valid users = admin users = Jason read only = No create mask = 0664 directory mask = 0775 browseable = No [printers] comment = All Printers path = /var/spool/samba guest ok = Yes printable = Yes use client driver = Yes browseable = No [netlogon] path = /etc/samba/netlogon write list = ntadmin Jason [Burn] comment = Burner Directory path = /burn read only = No guest ok = Yes [HOWTO] path = /usr/share/doc/HOWTO/other-formats/html [print$] path = /etc/samba/drivers write list = @ntadmin root guest ok = Yes [DeskJet] path = /var/spool/samba read only = No guest ok = Yes printable = Yes print command = lpr -U%U@%M -l -P%p %s -V use client driver = Yes printer driver = HP DeskJet 722C [profiles] path = /export/smb/ntprofile read only = No create mask = 0774 directory mask = 0775 guest ok = Yes csc policy = programs -------------- next part -------------- HTML attachment scrubbed and removed