On Tuesday 26 April 2005 16:17, Rivera, Anthony R (OIT) wrote: > Hello. I'm trying to convert a Samba server from 2.2.8.0 on AIX 4.3.3 to > Samba Version 3.0.4.0 on AIX version 5.2.0. I have listed my smb.conf > file from the old version below and was hoping someone could point to > the changes I'll need to make on the newer version. Thanks so much > > Right now, the users are verified against an NT Domain and I'd like to > keep it that way. > > I really appreciate any advice
Tony, Please refer to chapter 8 of the book "Samba-3 by Example" available from http://www.samba.org/samba/docs/Samba-Guide.pdf IF anything is not clear, or does not answer your needs please let me know so I we can improve our documentation. - John T. > > Tony > ---------------------------------------------------------- > > <server> lib >cat smb.conf > # This is the main Samba configuration file. You should read the > # smb.conf(5) manual page in order to understand the options listed > # here. Samba has a huge number of configurable options (perhaps too > # many!) most of which are not shown in this example > # > # Any line which starts with a ; (semi-colon) or a # (hash) > # is a comment and is ignored. In this example we will use a # > # for commentry and a ; for parts of the config file that you > # may wish to enable > # > # NOTE: Whenever you modify this file you should run the command > "testparm" > # to check that you have not many any basic syntactic errors. > # > #======================= Global Settings > ===================================== > [global] > > # workgroup = NT-Domain-Name or Workgroup-Name > ; workgroup = SUPPORT > ; debug level = 10 > ; syslog = 0 > workgroup = WORKGROUP > > # server string is the equivalent of the NT Description field > server string = Samba Server SERVER > > # This option is important for security. It allows you to restrict > # connections to machines which are on your local network. The > # following example restricts access to two C class networks and > # the "loopback" interface. For more examples of the syntax see > # the smb.conf man page > > # If you want to automatically load your printer list rather > # than setting them up individually then you'll need this > ; load printers = yes > > # you may wish to override the location of the printcap file > ; printcap name = /etc/printcap > > # on SystemV system setting printcap name to lpstat should allow > # you to automatically obtain a printer list from the SystemV spool > # system > ; printcap name = lpstat > > # It should not be necessary to specify the print system type unless > # it is non-standard. Currently supported print systems include: > # bsd, sysv, plp, lprng, aix, hpux, qnx > ; printing = bsd > printing = aix > > # Uncomment this if you want a guest account, you must add this to > /etc/passwd > # otherwise the user "nobody" is used > ; guest account = pcguest > ; guest account = nobody > > # this tells Samba to use a separate log file for each machine > # that connects > log file = /var/samba/log/log.%m > > # Put a capping on the size of the log files (in Kb). > max log size = 50 > > # Security mode. Most people will want user level security. See > # security_level.txt for details. > ; security = user > ; security = share > security = server > # Use password server option only with security = server > password server = itscpdc > > allow trusted domains = yes > > # Password Level allows matching of _n_ characters of the password for > # all combinations of upper and lower case. > ; password level = 8 > > # You may wish to use password encryption. Please read > # ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation. > # Do not enable this option unless you have read those documents > ; encrypt passwords = yes > encrypt passwords = no > > # If the following parameter is set to "yes" (it defaults to "no") and > # an smbpasswd file exists containing all the valid users of a Samba > system > # but no encrypted passwords (ie. the Lanman hash and NT hash entries in > the > # file are set to "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"), then as users log > in > # with plaintext passwords that are matched against their UNIX password > # entries, their plaintext passwords will be hashed and entered into the > # smbpasswd file. > # > update encrypted = yes > > # Unix users can map to different SMB User names > ; username map = /etc/smbusers > ; username map = /var/samba/users.map > > # Using the following line enables you to customise your configuration > # on a per machine basis. The %m gets replaced with the netbios name > # of the machine that is connecting > ; include = /usr/local/lib/smb.conf.%m > > # Most people will find that this option gives better performance. > # See speed.txt and the manual pages for details > socket options = TCP_NODELAY > > # Configure Samba to use multiple interfaces > # If you have multiple network interfaces then you must list them > # here. See the man page for details. > ; interfaces = 192.168.12.2/24 192.168.13.2/24 > > # Configure remote browse list synchronisation here > # request announcement to, or browse list sync from: > # a specific host or from / to a whole subnet (see below) > ; remote browse sync = 192.168.3.25 192.168.5.255 > # Cause this host to announce itself to local subnets here > ; remote announce = 192.168.1.255 192.168.2.44 > > # Browser Control Options: > # set local master to no if you don't want Samba to become a master > # browser on your network. Otherwise the normal election rules apply > ; local master = no > > # OS Level determines the precedence of this server in master browser > # elections. The default value should be reasonable > ; os level = 33 > > # Domain Master specifies Samba to be the Domain Master Browser. This > # allows Samba to collate browse lists between subnets. Don't use this > # if you already have a Windows NT domain controller doing this job > ; domain master = yes > > # Preferred Master causes Samba to force a local browser election on > startup > # and gives it a slightly higher chance of winning the election > ; preferred master = yes > > # Use only if you have an NT server on your network that has been > # configured at install time to be a primary domain controller. > domain controller = AYATOLAH > > # Enable this if you want Samba to be a domain logon server for > # Windows95 workstations. > ; domain logons = yes > > # if you enable domain logons then you may want a per-machine or > # per user logon script > # run a specific logon batch file per workstation (machine) > ; logon script = %m.bat > # run a specific logon batch file per username > ; logon script = %U.bat > > # Where to store roving profiles (only for Win95 and WinNT) > # %L substitutes for this servers netbios name, %U is username > # You must uncomment the [Profiles] share below > ; logon path = \\%L\Profiles\%U > > # Windows Internet Name Serving Support Section: > # WINS Support - Tells the NMBD component of Samba to enable it's WINS > Server > wins support = no > > # WINS Server - Tells the NMBD components of Samba to be a WINS Client > # Note: Samba can be either a WINS Server, or a WINS Client, but > NOT both > wins server = 119.119.223.12 > > # WINS Proxy - Tells Samba to answer name resolution queries on > # behalf of a non WINS capable client, for this to work there must be > # at least one WINS Server on the network. The default is NO. > wins proxy = no > > # DNS Proxy - tells Samba whether or not to try to resolve NetBIOS names > # via DNS nslookups. The built-in default for versions 1.9.17 is yes, > # this has been changed in version 1.9.18 to no. > dns proxy = no > > # Case Preservation can be handy - system default is _no_ > # NOTE: These can be set on a per share basis > preserve case = no > short preserve case = no > # Default case is normally upper case for all DOS files > ; default case = lower > # Be very careful with case sensitivity - it can break things! > ; case sensitive = no > > #============================ Share Definitions > ============================== > [homes] > comment = Home Directories > browseable = no > writable = yes > > # Un-comment the following and create the netlogon directory for Domain > Logons > [netlogon] > comment = Network Logon Service > path = /usr/local/samba/lib/netlogon > guest ok = no > writable = no > share modes = no > > # NOTE: If you have a BSD-style print system there is no need to > # specifically define each individual printer > [printers] > comment = All Printers > ; path = /usr/spool/samba > path = /tmp > browseable = yes > # Set public = yes to allow user 'guest account' to print > guest ok = yes > writable = no > printable = yes > > [tmp] > comment = Temporary file space > path = /tmp > read only = no > public = no > valid users = fred,steve,apu > writable = yes > printable = no > > [laguna] > comment = Top Fuel- Authorized Only > path = /topfuel > read only = no > public = no > valid users = fred,jimbo,steve > writable = yes > printable = no > > [db2] > comment = DB2 Home Dir- DBAs only > path = /usr/lpp/db2junk > valid users = fred,jimbo > writeable = yes > printable = no > > [home-server] > comment = Home Directories > path = /usr4/home > public = no > valid users = fred,jimbo > writable = yes > printable = no > write list = @staff > > <server> lib > -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
