Hello,
I'm new to the list. I subscribed because there is a problem that
most do not get to look around:
Before I'm using roaming profiles with samba and had no problems. But
when activating local profiles (I did it puting the directives "logon
path", "logon home" and "logon drive" blank) passwords
and part of the
configuration is not saved in some programs (Chrome, Explorer ...) and
sometimes a window opens saying "an application is requesting access to
a protected item". I think it may be a permissions problem. Any idea?
Thanks.
My smb.cnf:
#======================= Global Settings ======================
[global]
workgroup = verdnatura
server string =
dns proxy = yes
; wins support = yes
; wins server = w.x.y.z
; name resolve order = lmhosts host wins bcast
interfaces = eth0 lo
bind interfaces only = yes
log file = /var/log/samba/log.%m
max log size = 1000
syslog = 0
panic action = /usr/share/samba/panic-action %d
log level = 0
; syslog only = no
# Authentication
security = user
encrypt passwords = true
obey pam restrictions = yes
unix password sync = no
passwd program = /usr/sbin/smbldap-passwd %u
passwd chat = *Changing\sUNIX\sand\ssamba\spasswords\sfor\s*\nNew
\sPassword:\s%n*\nRetype\snew\spassword:\s%n*.
; guest account = nobody
; invalid users = root
pam password change = yes
# Domain
domain logons = yes
enable privileges = yes
logon path =
logon home =
logon drive =
logon script = startup.bat
root preexec = /sbin/mkhomedir_helper %U
add user script = /usr/sbin/smbldap-useradd -a -m '%u'
delete user script = /usr/sbin/smbldap-userdel '%u'
add group script = /usr/sbin/smbldap-groupadd -p '%g'
delete group script = /usr/sbin/smbldap-groupdel '%g'
add user to group script = /usr/sbin/smbldap-groupmod -m '%u'
'%g'
delete user from group script = /usr/sbin/smbldap-groupmod -x '%u'
'%g'
set primary group script = /usr/sbin/smbldap-usermod -g '%g'
'%u'
add machine script = /usr/sbin/smbldap-useradd -w '%u'
rename user script = /usr/sbin/smbldap-usermod -r '%unew' '%
uold'
# Printing
load printers = yes
printing = cups
printcap name = cups
# Misc
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
; socket options = TCP_NODELAY
domain master = yes
preferred master = yes
local master = yes
time server = yes
dos filetimes = yes
fake directory create times = yes
dos filetime resolution = yes
delete readonly = yes
os level = 64
template shell = /bin/bash
; message command = /bin/sh -c '/usr/bin/linpopup "%f"
"%m" %s; rm %s' &
idmap backend = ldapsam
idmap uid = 10000-20000
idmap gid = 10000-20000
hide files = /desktop.ini/outlook*.lnk/*Briefcase*/
# LDAP
passdb backend = ldapsam
ldap suffix = dc=verdnatura,dc=es
ldap machine suffix = ou=machines
ldap user suffix = ou=people
ldap group suffix = ou=groups
ldap idmap suffix = ou=idmap
ldap admin dn = cn=admin,dc=verdnatura,dc=es
ldap passwd sync = yes
ldap delete dn = no
ldap ssl = no
create mask = 0744
directory mask = 0744
#======================= Sharing Settings ======================
[homes]
comment = Home Directories
read only = no
browseable = no
[printers]
comment = All Printers
path = /var/spool/samba
guest ok = yes
printable = yes
writable = no
printer admin = root
browseable = no
[print$]
comment = Printer Drivers
path = /var/lib/samba/printers
write list = root
create mask = 0664
directory mask = 0775
[netlogon]
comment = Network Logon Service
path = /root/netlogon
read only = no
force create mode = 775
force directory mode = 775
