Hi, I'm exerimenting with samba+ldap pdc and I have "Windows cannot locate the server copy of your roaming profile" on logon,
here is smb.conf: [global] unix charset = LOCALE workgroup = CPE netbios name = CPE-PDC server string = Samba Domain Controller enable privileges = yes interfaces = eth1,lo bind interfaces only = Yes passdb backend = ldapsam:ldap://192.168.10.124 # username map = /etc/samba/smbusers hide unreadable = yes hide dot files = yes log level = 1 syslog = 0 log file = /var/log/samba/%m max log size = 50 smb ports = 137 138 139 445 name resolve order = wins bcast hosts time server = Yes printcap name = CUPS # map to guest = Never # guest account = nobody wins support = Yes ldap suffix = dc=cpe,dc=it ldap machine suffix = ou=Computers ldap user suffix = ou=People ldap group suffix = ou=Groups ldap idmap suffix = ou=Idmap ldap admin dn = cn=admin,dc=cpe,dc=it idmap backend = ldap:ldap://192.168.10.124 idmap uid = 10000-20000 idmap gid = 10000-20000 map acl inherit = Yes printing = cups #printer admin = Administrator veto files = /*.eml/*.nws/*.{*}/ veto oplock files = /*.doc/*.xls/*.mdb/ encrypt passwords = Yes obey pam restrictions = No ldap passwd sync = Yes mangling method = hash2 logon script = scripts\logon.bat logon path = \\%L\profiles\%U logon drive = H: logon home = \\%L\%U domain logons = Yes os level = 65 preferred master = Yes domain master = Yes add user script = /usr/sbin/smbldap-useradd -m "%u" ldap delete dn = Yes add machine script = /usr/sbin/smbldap-useradd -w "%u" add group script = /usr/sbin/smbldap-groupadd -p "%g" add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g" delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g" set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u" delete user script = /usr/sbin/smbldap-userdel ā%uā delete group script = /usr/sbin/smbldap-groupdel ā%gā [netlogon] comment = Network Logon Service path = /home/samba/netlogon/ browseable = No read only = yes writable = No locking = No share modes= No [profiles] path = /home/samba/profiles read only = No create mask = 0600 directory mask = 0700 browseable = No # guest ok = No profile acls = yes csc policy = disable nt acl support = Yes valid users = %U admin users = @"Domain Admins" hide files = /desktop.ini/outlook*.lnk/*Briefcase*/ root preexec = PROFILE=/home/samba/profiles/%u; if [ ! -e $PROFILE ]; then mkdir -pm700 $PROFILE; chown %u:%g $PROFILE;fi [homes] comment = Home Directories valid users = %S read only = No browseable = No writable = yes any hints? regards Nicola -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
