Hi,
I'm using Unix now for the last 2 years, so I'm learning everyday new
things. Now I'm trying to configure Samba 2.2.5 (on Freebsd 4.4) so that
w2k machines can logon to the domain.
I added several users to smbpasswd (which are real users on the server. I
would like to have "virtual users" which don't have a real account
but
that's an other problem)
In several howto's I was told to add trusted w2k machines with the
following instruction:
useradd --g smbuser --d /dev/null --s /dev/null ntclient$
Now add it to the password database
smbpasswd -a -m ntclient (the $ at the end is not required)
Freebsd can not add an account with a "$" nevertheless I made the
account
and tried smbpasswd -a -m ntclient
I did get the following error (also when I changed the name in my passwd
with a $)
User ntclient$ does not exist in system password file (usually
/etc/passwd). Cannot add account without a valid local system user.
Failed to modify password entry for user ntclient$
But the user exist!!
Does anyone has experiance with logon to a domain with w2k-clients?
Regards Robbert Knipscheer
PS
Here's my smb.conf
[global]
workgroup = knipscheer
netbios name = firewall
server string = Firewall huize knip
remote announce = 192.168.1.255 192.168.2.44 192.168.1.2
security = user
encrypt passwords = yes
os level = 65
domain logons = yes
domain master = yes
preferred master = yes
dns proxy = No
wins support = Yes
guest account = guest pcguest smbguest #does not work yet
[netlogon]
comment = The domain logon service
path = /usr/local/samba/netlogon
public = no
writeable = no
[homes]
comment = HomeDir
writeable = Yes
browseable = No
> I added several users to smbpasswd (which are real users on the server. I > would like to have "virtual users" which don't have a real account but > that's an other problem) > > In several howto's I was told to add trusted w2k machines with the > following instruction: > > useradd --g smbuser --d /dev/null --s /dev/null ntclient$ > Now add it to the password database > smbpasswd -a -m ntclient (the $ at the end is not required) > > Freebsd can not add an account with a "$" nevertheless I made the account > and tried smbpasswd -a -m ntclient > I did get the following error (also when I changed the name in my passwd > with a $) > > User ntclient$ does not exist in system password file (usually > /etc/passwd). Cannot add account without a valid local system user. > Failed to modify password entry for user ntclient$this is a FreeBSD problem, the system can handle usernames with trailing $ but the useradd/pw wont accept it. i run Samba on FreeBSD 4.6, and my solution is simply add the user without the $ at the end and then use "vipw". this opens the master.passwd file, you can apply whatever changes you need (adding the trailing $ to the usernam for the machine). then save/exit and vipw will automatically update all neccesary other files/passwd databases. as this is somehow a long procedure for every machine to add, i edit the master.passwd file via a python-script (well, i wrote a whole python-script for managing the users (local and samba) and machine accounts) and run ??make_db?? ... or something. this will generate all the other database files i.e. /etc/passwd. then you can add your machine to samba via smbpasswd -a -m machinename Daniel T. Bender -- free your mind and your ass will follow
----- Original Message ----- From: "Knut Ove Hauge" <feb2000info@yahoo.no> To: "Daniel T. Bender" <h4rv3st@web.de> Sent: Friday, September 06, 2002 9:36 PM Subject: Re: [Samba] samba domeinlogon> I dont know how virtual they will be, but u can add linux users > whithout any home directory in Red Hat. Use adduser -r useryou can do this on FreeBSD too, of course. simple do /sbin/nologin as shell and either /dev/null as home-dir or create the user via pw and do NOT specify the -m option, as this wont create any home-dir then (you can specify one, but that is not created) Daniel T. Bender -- free your mind and your ass will follow