Hi, all.
I know that the Samba people do *not* advise using shares in the ad, but,
in the current circumstances, this will have to be done. At least until
there is another technical-administrative context.
In the very old previous installation (Suse 42, samba 4.4.2), using
openLdap, I used logon.bat scripts to map Samba shares to windows client
devices ("net use K: \\mydomain\cj /persistent :no", for example). And
this
was done individually, that is, each user had their logon.bat, which was in
their home directory (in my case, /home/%U). The configuration was done in
smb.conf, using the shares:
[netlogon]
path = /home/%u
write list = so-and-so beltrano
browseable = no
[homes]
comment = Home Directories
browseable = no
read only = no
Can this or something similar be done in the ad?
To ask another way: how can a user, using a Windows client, map existing
shares in the ad to Windows devices, automatically, when logging into the
domain?
Thanks.
Ricardo
<https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail>
N?o
cont?m v?rus.www.avast.com
<https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail>
<#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>
You're going to want to look up Group Policy Management -> Drive Maps. On Fri, Jan 5, 2024 at 1:54?PM Ricardo Campos via samba < samba at lists.samba.org> wrote:> Hi, all. > > I know that the Samba people do *not* advise using shares in the ad, but, > in the current circumstances, this will have to be done. At least until > there is another technical-administrative context. > In the very old previous installation (Suse 42, samba 4.4.2), using > openLdap, I used logon.bat scripts to map Samba shares to windows client > devices ("net use K: \\mydomain\cj /persistent :no", for example). And this > was done individually, that is, each user had their logon.bat, which was in > their home directory (in my case, /home/%U). The configuration was done in > smb.conf, using the shares: > [netlogon] > path = /home/%u > write list = so-and-so beltrano > browseable = no > [homes] > comment = Home Directories > browseable = no > read only = no > > Can this or something similar be done in the ad? > > To ask another way: how can a user, using a Windows client, map existing > shares in the ad to Windows devices, automatically, when logging into the > domain? > > Thanks. > > Ricardo > > < > https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail > > > N?o > cont?m v?rus.www.avast.com <http://xn--vrus-vpa.www.avast.com> > < > https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail > > > <#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2> > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >
On Friday, January 5, 2024 9:53 PM Ricardo Campos wrote:> > To ask another way: how can a user, using a Windows client, map existing shares in > the ad to Windows devices, automatically, when logging into the domain? >You might consider using Group Policy to map drives for users so the shares are automatically allocated a drive letter when the user logs on. This is in: User Configuration > Preferences > Windows Settings > Drive Maps Use Group Policy Management (part of RSAT) from a Windows Domain Member to do this. If you are talking about the User's Home directory - this can be automatically connected (and auto created when configured in ADUC) without the need for Group Policy. Just set the Home Folder to "Connect <drive Letter> To <path-to-top-level-home-folder>\%USERNAME% on the Profile tab of the user(s). This will automatically create the users' folders when configured and connect the home folder to the specified drive letter. In addition you may also which to use Redirected Folder in a GPO to redirect Documents, Picture, Music, Videos etc to this folder. This requires, of course, that the correct permissions are set from Windows in the Users Home folder at the top level. Note the permissions in the samba WiKi at https://wiki.samba.org/index.php/Windows_User_Home_Folders needs amendment to allow the auto-creation of the folder: Domain Users should be granted "Create Folders / Append Data" to "This folder only" in addition to the other settings. HTH, spindles7