[Samba] pam_winbind.so - How do I create it?
Hello, I'm installing 2.2.7a, or attempting to at any rate. I've compiled it from source using the following instructions: http://us2.samba.org/samba/docs/Samba-HOWTO-Collection.html Anyways, I've got it set up so that it works. Now I'm trying to get to a point where I can interface it like I have with a different Linux box that is working without any problems. When I did the other box, I did a binary distribution, so the file had apparently already existed. In following the instructions in the above link, this command doesn't seem to do anything: root# make nsswitch/pam_winbind.so Here's a quick quote from the manual: You will need a PAM module to use winbindd with these other services. This module will be compiled in the ../source/nsswitch directory by invoking the command root# make nsswitch/pam_winbind.so from the ../source directory. The pam_winbind.so file should be copied to the location of your other pam security modules. On Linux and Solaris systems, this is the /lib/security directory. As far as I can tell, I'm doing something wrong, but maybe not. Can anyone offer some advise? Oh, btw, this is a RedHat 7.3 box that I'm trying to get all this configured on. Same with the other successful one that I have running. Thanks! Scott -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] pam_winbind.so - How do I create it?
pam_winbind.so doesn't seem to exist. I even did a 'find' to see if it did somewhere else, but not such luck. The libnss_winbind.so was there though. Just the pam_winbind.so isn't there. -Original Message- From: David Brodbeck [mailto:[EMAIL PROTECTED]] Sent: Monday, February 17, 2003 12:01 PM To: Scott Wrosch; Samba Subject: RE: [Samba] pam_winbind.so - How do I create it? -Original Message- From: Scott Wrosch [mailto:[EMAIL PROTECTED]] When I did the other box, I did a binary distribution, so the file had apparently already existed. In following the instructions in the above link, this command doesn't seem to do anything: root# make nsswitch/pam_winbind.so Scott, look in the nsswitch subdirectory of your samba source directory and see if pam_winbind.so is there. If it is, you just have to copy it to /lib/secure/ with the other pam libraries. You'll also need to copy libnss_winbind.so to your /lib directory and make a softlink to libnss_winbind.so.2. None of these steps are done for you by 'make install'. If this doesn't help, maybe I've misunderstood your problem. I think the reason 'make nsswitch/pam_winbind.so' isn't doing anything is because the file's already been built, though. The regular 'make' routine seems to do this automatically. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] RE: pam_winbind.so - How do I create it?
That's what I'm trying to do though, is install from source. I know I wouldn't be having the problems if I was using the RPMs, but I figure I gotta learn somehow. So I decided to try source, and this is the only thing (so far) that I'm having troubles with. But, that's the file I'm looking for. You'd follow these instructions if you were compiling from source. Samba 2.2.7a can be installed on RedHat 7.3 using RPMs from Samba's FTP site. Once installed, make sure you have the library: [supcd@hjx-app-01 supcd]$ ls -l /lib/security/pam_winbind.so -rwxr-xr-x1 root root17148 01-27 17:26 /lib/security/pam_winbind.so -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] RE: pam_winbind.so - How do I create it?
Hi Chris, It looks like that did the trick. Apparently the necessary package wasn't installed! Thanks for all your assistance! Who knows how long I would have been beating my head against the keyboard. Thanks! Scott Wrosch desk 248.333.7700 x227 email [EMAIL PROTECTED] -Original Message- From: Chris de Vidal [mailto:[EMAIL PROTECTED]] Sent: Monday, February 17, 2003 12:58 PM To: Scott Wrosch Cc: [EMAIL PROTECTED] Subject: Re: pam_winbind.so - How do I create it? --- Scott Wrosch [EMAIL PROTECTED] wrote: Back to your problem, someone else suggested you go into your samba-X.X.X/source directory, run make nsswitch/pam_winbind.so, and then manually copy nsswitch/pam_winbind.so to /lib/security, then set up a link to /lib/security/pam_winbind.so in /lib. I have no pam* files in /lib and it's working: [supcd@hjx-app-01 supcd]$ ls -l /lib/pam* ls: /lib/pam*: No such file or directory It can't hurt to make that link, but try first without it. That's the problem. I can't even make it. I keep getting errors galore. And, from what I've been reading, the pam_winbind.so file gets copied to /lib/security .. So you might have it there. I may just try and copy it from the RPM version I have installed on my other Linux box, but I'm really confused as to why it isn't even working in the first place. I have a thought. Do you have the pam-devel package installed? rpm -q pam-devel If not, install it and try make nsswitch/pam_winbind.so again. If so, cut out the last dozen errors and post them to me and the list. Good luck, /dev/idal __ Do you Yahoo!? Yahoo! Shopping - Send Flowers for Valentine's Day http://shopping.yahoo.com -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] The credentials supplied conflict with an existing set of credentials
No, It's not a bug per se. According to Microsoft, it's by design. http://support.microsoft.com/default.aspx?scid=kb;en-us;197987 http://support.microsoft.com/default.aspx?scid=kb;en-us;106211 Reference the above two Microsoft Knowledgebase articles. It should answer your questions. Hope that helps! Thanks, Scott Wrosch desk 248.333.7700 x227 email [EMAIL PROTECTED] -Original Message- From: Matthieu Turpault [mailto:[EMAIL PROTECTED]] Sent: Friday, January 03, 2003 10:54 AM To: Samba Subject: [Samba] The credentials supplied conflict with an existing set of credentials Hi lists, Is it possible to read a directory on a samba server and read a second directory with permissions of an other user ? When I try to browse the test2 directory (see my smb.conf) after browsing the test1 directory, a dialog box opens. I type the credential validUser/Password and the following error message is displayed: The credentials supplied conflict with an existing set of credentials Do you have any idea ? Thanks in advance My configuration: Server - Mandrake 8.2 - Samba 2.2.7 Client - Windows 2000 SP3 The revelant part of my smb.conf follows: smb.conf --- [test1] path = /SambaTest/test1 [test2] path = /SambaTest/test2 valid users = eba revalidate = yes end smb.conf --- --- Matthieu Turpault -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] UNIX with samba .vs. native Windows Server , how to compare thei r performance for Windows-biased management
I feel your pain Karen. I'd tried briefly (before I figured that it wasn't worth my breath because they wouldn't listen at all) to convince my superiors to clean up a HD problem through Samba and one of the two Solaris boxes we have. We have this nice brand new storage array, and it probably isn't getting used for a whole lot, yet our domain controller (primary) is constantly running with less than 1 GB available free space. I have even suggest as well just setting up a small PC with Linux just for users storing their large files (read: images), but have had no such luck. So, after months of dealing with this, I feel your pain. Funny thing is, they just ordered another Windows-based server machine for some un-(insert appropriate religious deity here) purpose. As far as benchmarking goes, I'm afraid I can't help much, as I'm limited to the use of PCs at the moment. But you've got me into the idea of setting up a small Linux cluster for the sake of learning how to do it and stuff. Regards, Scott Wrosch desk 248.333.7700 x227 email [EMAIL PROTECTED] -Original Message- From: Wieprecht, Karen M. [mailto:[EMAIL PROTECTED]] Sent: Friday, December 13, 2002 3:24 PM To: '[EMAIL PROTECTED]' Subject: [Samba] UNIX with samba .vs. native Windows Server , how to compare thei r performance for Windows-biased management I had samba working on an old Sun Enterprise server using a JBOD that was managed with veritas volume manager (legacy stuff that had long outlived it's usefulness). Management arbitrarily decided to replace the aging Solaris server with a native Windows server without talking to me. I instead tried to persuade them to use an SGI cluster I had been putting together and use newer features of samba (winbind, domain authentication) for hosting this data, but they weren't interested. When that old Solaris system started having problems, and the new windows server wasn't online yet, I had to temporarily host the data on my SGI cluster, a duo of servers that was running samba with winbind and domain authentication. It was a very nice setup, either server in the pair could serve the files, and we made user login scripts mount the shares from whichever server reponded first. When we had to take the primary server down for maintenance, we switched the login script to point them to the secondary server's shares, had them log out and back in. While they worked happily off of the secondary server, we did a half day's worth of maintenance on the primary server without affecting the users. When we were done, we put the login script back the way it was before, and the next time they logged out and back in, they were again pointed to the primary server with the secondary as a backup. Even after demonstrating how nice my configuration was and how seemlessly we were able to do maintenance without affecting users, management and the two NT guys I work with were still sold on using the Windows native server. They claimed that it was cheaper to buy the hardware and easier to manage permissions and file access rights with the native equipment (of course, they are PC guys). My argument was that we could probably achieve the same file access flexibility with UNIX ACLs (which previous staff had not enabled on the UNIX side), and that the UNIX machines use RISC-based processors, a completely different animal than the GHZ pentium processors, so they would really have to come up with some benchmarks to compare the two systems. They also weren't originally going to accommodate any easy file interoperability with the UNIX users, they were going to make them use FTP to move files between the UNIX machine and the windows server, and I argued that this was removing capability that users were accustomed to having, not a real crowd pleasing decision. Now they are experimenting with Microsoft SFU to make the Windows box allow the UNIX machine to NFS mount its shares, and I have to say it does seem to work pretty well. It tied right into NIS nicely, automatically mapped matching usernames on either side, allows me to define mappings with usernames that do not match, etc. But it still digs in my crawl though that I never even got a chance to show what my cluster could do for them until after management had already decided to buy the windows server, and even after a nice demonstration of the UNIX cluster's capabilities, they are still sold (arbitrarily) on using the native Windows box. How can I compare the performance of the two servers? Many of you started out with Windows servers and migrated to samba to get better performance, but my collegues have done the opposite. Am I blindly biased that UNIX is better or is there a way I can get some real numbers to prove that te windows server is a slower file server? The guys are always weighing the cost and ease of management against the difference in performance (if there isn't much difference in performance, go with what is cheaper
RE: [Samba] samba authenticate to 2K AD?
Check this out: http://us6.samba.org/samba/docs/Samba-HOWTO-Collection.html#WINBIND Should help you out dramatically. I use winbind here, and it works flawlessly, for the most part. Scott Wrosch desk 248.333.7700 x227 email [EMAIL PROTECTED] -Original Message- From: Alexander Lazarevich [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 11, 2002 3:13 PM To: Simo Sorce Cc: Samba Mailing List Subject: Re: [Samba] samba authenticate to 2K AD? cool, thanks. but are you saying that winbind works - it really does authenticate a linux box to a 2K server active directory?, youve seen it work?, and if i install new service packs on the 2K server will that destroy the authentication of winbind running on the linux box using samba? thanks! alex ------ Alex Lazarevich | Systems | Imaging Technology Group [EMAIL PROTECTED] | (217)244-1565 | www.itg.uiuc.edu ------ On 11 Dec 2002, Simo Sorce wrote: Look for winbindd and pam_winbind, nss_winbind libraries. Simo. On Wed, 2002-12-11 at 20:47, Alexander Lazarevich wrote: Has anyone on this list been able to configure samba in such a way so that it will authenticate to windows 2K acitve directory. What I want to do is this: install samba 2.2.7 onto a Redhat linux 7.3 system, then configure samba (I think using something called smb_pam) so that it will join the windows active directory domain. Is such a thing possible? Has anyone here done it? I can't find this anywhere in the samba documentation. All it talks about is making samba the PDC, which I don't want to do. I can't get rid of my AD, aghhh... I know this can be done with ldap_pam, but I'd prefer to do it with samba. If you could point me to some documentation, that would be excellent! Thanks! Alex ------ Alex Lazarevich | Systems | Imaging Technology Group [EMAIL PROTECTED] | (217)244-1565 | www.itg.uiuc.edu ------ -- Simo Sorce - [EMAIL PROTECTED] Xsec s.r.l. via Durando 10 Ed. G - 20158 - Milano tel. +39 02 2399 7130 - fax: +39 02 700 442 399 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Winbind and Samba
Hi Dave, I had a similar issue on my RedHat 7.3 box. If I'm understanding correctly though, I could log in root and what not fine through Telnet and what not, but not for the purpose of trying to access shares. It worked before I joined the domain, but for some reason it didn't work afterwards. Turns out I forgot to add the UNIX users into the smbpasswd file. Anwyays, I'm enclosing my config files for connecting to the server for various services via winbind/PAM. Hope it helps! Regards, Scott :: ftp :: #%PAM-1.0 auth required /lib/security/pam_listfile.so item=user sense=deny file= /etc/ftpusers onerr=succeed auth sufficient /lib/security/pam_winbind.so auth required /lib/security/pam_stack.so service=system-auth auth required /lib/security/pam_shells.so accountsufficient /lib/security/pam_winbind.so accountrequired /lib/security/pam_stack.so service=system-auth sessionrequired /lib/security/pam_stack.so service=system-auth :: login :: #%PAM-1.0 auth required /lib/security/pam_securetty.so auth sufficient /lib/security/pam_winbind.so auth sufficient /lib/security/pam_unix.so use_first_pass auth required /lib/security/pam_stack.so service=system-auth auth required /lib/security/pam_nologin.so accountsufficient /lib/security/pam_winbind.so accountrequired /lib/security/pam_stack.so service=system-auth password required /lib/security/pam_stack.so service=system-auth sessionrequired /lib/security/pam_stack.so service=system-auth sessionoptional /lib/security/pam_console.so sessionrequired /lib/security/pam_mkhomedir.so skel=/etc/skel -Original Message- From: Dave Morrow [mailto:David.Morrow;autodata.net] Sent: Friday, November 15, 2002 3:52 PM To: '[EMAIL PROTECTED]' Subject: [Samba] Winbind and Samba Hi all, I was wondering if someone could lend a little assistance. I recently setup SAMBA/Winbind to allow users to login to a Redhat 8 box using their Windows NT Domain credentials. All is working well in that regard. The issue I am having is getting regular UNIX based users to be able to login. The following is my PAM configuration. For example, if I try to login as root, it does not work. Any assistance would be greatly appreciated. #%PAM-1.0 auth required /lib/security/pam_securetty.so #auth required/lib/security/pam_stack.so service=system-auth auth required /lib/security/pam_nologin.so auth sufficient /lib/security/pam_winbind.so #accountrequired/lib/security/pam_stack.so service=system-auth auth required /lib/security/pam_pwdb.so use_first_pass shadow nullok accountrequired /lib/security/pam_winbind.so sessionrequired /lib/security/pam_pwdb.so sessionrequired /lib/security/pam_mkhomedir.so skel=/etc/skel umask=0022 password required /lib/security/pam_pwdb.so #password required/lib/security/pam_stack.so service=system-auth #sessionrequired/lib/security/pam_stack.so service=system-auth #sessionoptional/lib/security/pam_console.so David Morrow Network Administrator Autodata Solutions Company Ph: (519) 951-6067 Fax: (519) 451-6615 mailto: [EMAIL PROTECTED] Poor planning on your part does not necessitate an emergency on my part. This message has originated from Autodata Solutions Company. The attached material is the Confidential and Proprietary Information of Autodata Solutions Company. This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please delete this message and notify the Autodata system administrator at [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba and Solaris and Linux
Hello everyone, Just kind of a generalized question, and looking more for caveats than anything else. Were getting ready to implement the latest and greatest release of Samba on one of our Sun servers. Unfortunately, we havent determined which one yet, but we only have two, so its not a big deal. Anyways, Ive set up Samba successfully on Linux on multiple occasions, the most recent being on a domain with a Win2k Server as the domain controller. Given that Linux is a UNIX clone (more or less), are there any caveats I should perhaps take heed to when setting up Samba on Solaris? It will be set up for the domain here. Thanks, Scott Wrosch desk 248.333.7700 x227 pager 248.806.7657 text [EMAIL PROTECTED] email [EMAIL PROTECTED] Our greatest glory is not in never falling but in rising every time we fall.-- Confucius
[Samba] Re-Send - Non-HTML - (Sorry) Samba and Solaris and Linux
Hello everyone, Just kind of a generalized question, and looking more for caveats than anything else. We're getting ready to implement the latest and greatest release of Samba on one of our Sun servers. Unfortunately, we haven't determined which one yet, but we only have two, so it's not a big deal. Anyways, I've set up Samba successfully on Linux on multiple occasions, the most recent being on a domain with a Win2k Server as the domain controller. Given that Linux is a UNIX clone (more or less), are there any caveats I should perhaps take heed to when setting up Samba on Solaris? It will be set up for the domain here. Thanks, Scott Wrosch desk 248.333.7700 x227 pager 248.806.7657 text [EMAIL PROTECTED] email [EMAIL PROTECTED] Our greatest glory is not in never falling but in rising every time we fall. -- Confucius -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Groups and Samba and Winbind
Hello Jennifer, I'm a relative noob to Samba, so I may be off base, but I'll offer what I can. Unless it's a mis-type, re-type the groups command like this: groups ntdomain\jfountain Also, I've found that I need to use the domain as well when I'm using wbinfo as you have below. For instance, when I run it, I get this: [root@linux-38 samba]# wbinfo -r ma_swros 1 10011 [root@linux-38 samba]# I'm sure there's a switch though for converting from numbers to names. Also, the -r switch does resolve to UNIX numbers, not names. Unfortunately, I don't know why groups would be returning the UNIX group number. Mine looks like this: [MA_swros@linux-38 swros]$ groups MA_Domain Users MA_mis [MA_swros@linux-38 swros]$ And, here's my Winbind related portion of smb.conf for comparison: # Winbind entires. winbind separator = _ winbind uid = 1-2 winbind gid = 1-2 winbind enum users = yes winbind enum groups = yes template shell = /bin/bash # Tell Samba that yes, it does need to obey pam restrictions obey pam restrictions = yes When I initially got everything up and running, I was using the \ as my separator as well. Unfortunately I had issues with it and changed it to the _. I doubt that has anything to do with it, but it is possible. Hope my meaningless drivel has helped some, even though I'm really only offering comparisons. Regards, Scott Scott Wrosch desk 248.333.7700 x227 pager 248.806.7657 text [EMAIL PROTECTED] email [EMAIL PROTECTED] Our greatest glory is not in never falling but in rising every time we fall. -- Confucius -Original Message- From: Jennifer Fountain [mailto:JFountain;rbinc.com] Sent: Wednesday, October 30, 2002 1:38 PM To: [EMAIL PROTECTED] Subject: [Samba] Groups and Samba and Winbind I am having an issue with winbind/samba and my groups. when I type the following: $ groups ntdomain\\jfountain I get the following nothing. When i type this (logged in as jfountain) $ groups I get the following: $ 5 I am assuming this means domain admins. when i type $./wbinfo -r jfountain I get the following: 50016 50017 50018 50019 50020 50021 50010 50022 50023 5 I don't know where the disconnect is in winbind. why iam not getting my group listing instead of numbers wbinfo -g gets all the groups with no problem. here is my smb.conf [global] workgroup = ntdomain netbios name = samba server string = SAMBA interfaces = lan4 127.0.0.1 bind interfaces only = Yes security = DOMAIN encrypt passwords = Yes password server = server1 username map = /etc/smbusers socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 preferred master = False local master = No domain master = False wins server = 11.1.7.2 winbind uid = 4-4 winbind gid = 5-5 template shell = /usr/bin/ksh winbind separator = \ winbind cache time = 15 winbind enum users = Yes winbind enum groups = Yes winbind use default domain = Yes my nsswitch.conf passwd: files winbind groups: files winbind Any thoughts, ideas? what did i not do? Thanks!!! Jenn -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Unable to login with regular Linux accounts?
Hello, This may be kind of a dumb question, as it's something I could easily be overlooking, but I'm confused anyways. My Samba server is part of the MA domain. However, I want a couple of non-domain accounts to still be able to access Samba shares. The machines trying to access the shares are Win2k machines, and whenever I try to access the server, it asks me for the username and password. I had it working before I joined the domain, and it could have been working after I joined it as well, but I honestly don't remember. Attached is my smb.conf file.. Any ideas? I'm completely confused. smb.conf [global] workgroup = MA server string = Windows File Server/Local Web Server running on %L log file = /var/log/samba/log.%m.%u max log size = 5120 security = domain password server = ma-main encrypt passwords = yes smb passwd file = /etc/samba/smbpasswd unix password sync = Yes passwd program = /usr/bin/passwd %u passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *passw d:*all*authentication*tokens*updated*successfully* socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 dns proxy = no preserve case = yes # Restrict access to local network only hosts allow = 192.1.1. # Winbind entires. winbind separator = _ winbind uid = 1-2 winbind gid = 1-2 winbind enum users = yes winbind enum groups = yes template shell = /bin/bash # Tell Samba that yes, it does need to obey pam restrictions obey pam restrictions = yes # Share Definitions == [homes] comment = %U Home Directories browseable = no writable = yes [public] comment = Public Directories path = /home/public public = yes writable = yes [mis] comment = Accessible to members of MIS admin users = @MA_mis force directory security mode = 770 valid users = @MA_mis path = /home/mis public = no writable = yes printable = no Thanks, Scott Wrosch desk 248.333.7700 x227 pager 248.806.7657 text [EMAIL PROTECTED] email [EMAIL PROTECTED] Our greatest glory is not in never falling but in rising every time we fall. -- Confucius -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Script question
Hello, I've got the following script that I want to run every time a user logs in to the Samba server, whether it be from a mapped share or by opening a telnet session into the server and logging in that way. Here's the script: #!/bin/sh DOMAIN=`echo $USER | awk -F_ '{print $1}'` USERNAME=`echo $USER | awk -F_ '{print $2}'` if [ $DOMAIN = MA ]; then if [ -d /home/$DOMAIN/$USERNAME ]; then continue else mkdir /home/$DOMAIN/$USERNAME fi fi It's not the prettiest, but it does what I want, which is create the users home directory if it doesn't exist. Now, I know there were a couple of options in the smb.conf file for doing this, but I can't get it to cooperate. Can anyone help, or offer an alternate means? Thanks and regards, Scott Wrosch desk 248.333.7700 x227 pager 248.806.7657 text [EMAIL PROTECTED] email [EMAIL PROTECTED] Our greatest glory is not in never falling but in rising every time we fall. -- Confucius -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Script question
You'll have to forgive me, as I'm still a bit of a noob when it comes to Samba and many aspects of Linux, but how do I use it? I'm sure it's something stupidly simple, but I'm not sure where to begin. Thanks, Scott -Original Message- From: Samba [mailto:Samba;guidemail.com] Sent: Tuesday, October 29, 2002 10:48 AM To: Scott Wrosch; [EMAIL PROTECTED] Subject: RE: [Samba] Script question Have you looked at pam_mkhomedir ?? It will create home directories automatically. And you can do this with any pam-enabled service, i.e. telnet, ftp, samba. Josh -Original Message- From: Scott Wrosch [mailto:swrosch;MarketingAssociates.com] Sent: Tuesday, October 29, 2002 9:30 AM To: [EMAIL PROTECTED] Subject: [Samba] Script question Hello, I've got the following script that I want to run every time a user logs in to the Samba server, whether it be from a mapped share or by opening a telnet session into the server and logging in that way. Here's the script: #!/bin/sh DOMAIN=`echo $USER | awk -F_ '{print $1}'` USERNAME=`echo $USER | awk -F_ '{print $2}'` if [ $DOMAIN = MA ]; then if [ -d /home/$DOMAIN/$USERNAME ]; then continue else mkdir /home/$DOMAIN/$USERNAME fi fi It's not the prettiest, but it does what I want, which is create the users home directory if it doesn't exist. Now, I know there were a couple of options in the smb.conf file for doing this, but I can't get it to cooperate. Can anyone help, or offer an alternate means? Thanks and regards, Scott Wrosch desk 248.333.7700 x227 pager 248.806.7657 text [EMAIL PROTECTED] email [EMAIL PROTECTED] Our greatest glory is not in never falling but in rising every time we fall. -- Confucius -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Script question
Thanks Josh! That should do the trick. I found exactly what I was looking for at that link. Thanks! Scott -Original Message- From: Samba [mailto:Samba;guidemail.com] Sent: Tuesday, October 29, 2002 10:57 AM To: Scott Wrosch; [EMAIL PROTECTED] Subject: RE: [Samba] Script question Start with 'man pam' Or you can look here: http://www.kernel.org/pub/linux/libs/pam/Linux-PAM-html/ HTH Josh -Original Message- From: Scott Wrosch [mailto:swrosch;MarketingAssociates.com] Sent: Tuesday, October 29, 2002 9:51 AM To: Samba; [EMAIL PROTECTED] Subject: RE: [Samba] Script question You'll have to forgive me, as I'm still a bit of a noob when it comes to Samba and many aspects of Linux, but how do I use it? I'm sure it's something stupidly simple, but I'm not sure where to begin. Thanks, Scott -Original Message- From: Samba [mailto:Samba;guidemail.com] Sent: Tuesday, October 29, 2002 10:48 AM To: Scott Wrosch; [EMAIL PROTECTED] Subject: RE: [Samba] Script question Have you looked at pam_mkhomedir ?? It will create home directories automatically. And you can do this with any pam-enabled service, i.e. telnet, ftp, samba. Josh -Original Message- From: Scott Wrosch [mailto:swrosch;MarketingAssociates.com] Sent: Tuesday, October 29, 2002 9:30 AM To: [EMAIL PROTECTED] Subject: [Samba] Script question Hello, I've got the following script that I want to run every time a user logs in to the Samba server, whether it be from a mapped share or by opening a telnet session into the server and logging in that way. Here's the script: #!/bin/sh DOMAIN=`echo $USER | awk -F_ '{print $1}'` USERNAME=`echo $USER | awk -F_ '{print $2}'` if [ $DOMAIN = MA ]; then if [ -d /home/$DOMAIN/$USERNAME ]; then continue else mkdir /home/$DOMAIN/$USERNAME fi fi It's not the prettiest, but it does what I want, which is create the users home directory if it doesn't exist. Now, I know there were a couple of options in the smb.conf file for doing this, but I can't get it to cooperate. Can anyone help, or offer an alternate means? Thanks and regards, Scott Wrosch desk 248.333.7700 x227 pager 248.806.7657 text [EMAIL PROTECTED] email [EMAIL PROTECTED] Our greatest glory is not in never falling but in rising every time we fall. -- Confucius -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
pam_mkhomedir.so and Samba question (was: RE: [Samba] Script question)
Okay, I've got it partially working. Will that module also do it from a non-*nix login? For instance, say the user will more than likely never log into that server from a telnet session. Where would I put the following line: sessionrequired /lib/security/pam_mkhomedir.so skel=/etc/skel I'm running RedHat 7.3. In the /etc/pam.d directory, there are a bunch of different files. Currently I have it in two spots, the login file, and the samba file. I know it works fine in the login file as far as a telnet session goes. It does nothing though when connecting to the share through Windows. So I tried putting the same line in the samba file, and still nothing. Am I putting it in the wrong file? Any help is appreciated. Thanks and regards, Scott -Original Message- From: Scott Wrosch Sent: Tuesday, October 29, 2002 11:07 AM To: Samba; [EMAIL PROTECTED] Subject: RE: [Samba] Script question Thanks Josh! That should do the trick. I found exactly what I was looking for at that link. -Original Message- From: Samba [mailto:Samba;guidemail.com] Sent: Tuesday, October 29, 2002 10:57 AM To: Scott Wrosch; [EMAIL PROTECTED] Subject: RE: [Samba] Script question Start with 'man pam' Or you can look here: http://www.kernel.org/pub/linux/libs/pam/Linux-PAM-html/ HTH Josh -Original Message- From: Scott Wrosch [mailto:swrosch;MarketingAssociates.com] Sent: Tuesday, October 29, 2002 9:51 AM To: Samba; [EMAIL PROTECTED] Subject: RE: [Samba] Script question You'll have to forgive me, as I'm still a bit of a noob when it comes to Samba and many aspects of Linux, but how do I use it? I'm sure it's something stupidly simple, but I'm not sure where to begin. Thanks, Scott -Original Message- From: Samba [mailto:Samba;guidemail.com] Sent: Tuesday, October 29, 2002 10:48 AM To: Scott Wrosch; [EMAIL PROTECTED] Subject: RE: [Samba] Script question Have you looked at pam_mkhomedir ?? It will create home directories automatically. And you can do this with any pam-enabled service, i.e. telnet, ftp, samba. Josh -Original Message- From: Scott Wrosch [mailto:swrosch;MarketingAssociates.com] Sent: Tuesday, October 29, 2002 9:30 AM To: [EMAIL PROTECTED] Subject: [Samba] Script question Hello, I've got the following script that I want to run every time a user logs in to the Samba server, whether it be from a mapped share or by opening a telnet session into the server and logging in that way. Here's the script: #!/bin/sh DOMAIN=`echo $USER | awk -F_ '{print $1}'` USERNAME=`echo $USER | awk -F_ '{print $2}'` if [ $DOMAIN = MA ]; then if [ -d /home/$DOMAIN/$USERNAME ]; then continue else mkdir /home/$DOMAIN/$USERNAME fi fi It's not the prettiest, but it does what I want, which is create the users home directory if it doesn't exist. Now, I know there were a couple of options in the smb.conf file for doing this, but I can't get it to cooperate. Can anyone help, or offer an alternate means? Thanks and regards, Scott Wrosch desk 248.333.7700 x227 pager 248.806.7657 text [EMAIL PROTECTED] email [EMAIL PROTECTED] Our greatest glory is not in never falling but in rising every time we fall. -- Confucius -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: pam_mkhomedir.so and Samba question (was: RE: [Samba] Script question)
Worked like a charm. Thanks both to Tim and Josh for their assistance. It appears to be working beautifully!!! Thanks, Scott -Original Message- From: dj [mailto:dj;sin.khk.be] Sent: Tuesday, October 29, 2002 12:00 PM To: Scott Wrosch Cc: [EMAIL PROTECTED] Subject: Re: pam_mkhomedir.so and Samba question (was: RE: [Samba] Script question) On Tue, 29 Oct 2002, Scott Wrosch wrote: Okay, I've got it partially working. Will that module also do it from a non-*nix login? For instance, say the user will more than likely never log into that server from a telnet session. Where would I put the following line: sessionrequired /lib/security/pam_mkhomedir.so skel=/etc/skel I'm running RedHat 7.3. In the /etc/pam.d directory, there are a bunch of different files. Currently I have it in two spots, the login file, and the samba file. I know it works fine in the login file as far as a telnet session goes. It does nothing though when connecting to the share through Windows. So I tried putting the same line in the samba file, and still nothing. Am I putting it in the wrong file? No, it has to be in the Samba pam file, but there is more to it. You also have to tell Samba that is has to obey the rules set forth in the pam files. I've created a small howto detailing a Samba/Winbind setup as part of a domain controlled by Windows DC's. It includeds all details on setting up pam_mkhomedir. You can fin it at : http://www.sin.khk.be/~dj/ Kind regards, Tim Verhoeven -- === Tim Verhoeven Linux Open Source Specialist GSM : 0496 / 693 453 + e-business solutions Email : [EMAIL PROTECTED] + consulting URL : www.sin.khk.be/~dj/ + Server consolidation === -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Creating user home directories with domain login
Hello, I've got Samba set up for domain logins and use winbind as well. What I'm wondering is if it's possible for the home directory to be automatically created when the user logs in if it doesn't already exist? If not, anyone have a relatively easy way to do this, in addition to giving the proper owner and group? Thanks, Scott __ Do you Yahoo!? Y! Web Hosting - Let the expert host your web site http://webhosting.yahoo.com/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Creating user home directories with domain login
I'm sorry, I should have added that this box is not a domain controller. It gets the login info from the domain controller. However, I need it to create the user directory if it doesn't exist when the user logs in. Will a script do that? Thanks for the quick response! Regards, Scott --- Hall, Ken (ECSS) [EMAIL PROTECTED] wrote: There's a login script option at the share level that can be used to run the adduser or useradd command. I'm using a script with some extra smarts, but it can be done pretty easily. -Original Message- From: Scott Wrosch [mailto:kc8lir;yahoo.com] Sent: Friday, October 25, 2002 2:20 PM To: [EMAIL PROTECTED] Subject: [Samba] Creating user home directories with domain login Hello, I've got Samba set up for domain logins and use winbind as well. What I'm wondering is if it's possible for the home directory to be automatically created when the user logs in if it doesn't already exist? If not, anyone have a relatively easy way to do this, in addition to giving the proper owner and group? Thanks, Scott __ Do you Yahoo!? Y! Web Hosting - Let the expert host your web site http://webhosting.yahoo.com/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba __ Do you Yahoo!? Y! Web Hosting - Let the expert host your web site http://webhosting.yahoo.com/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Creating user home directories with domain login
I'm not familiar with it, or how to use it. How does it work? --- [EMAIL PROTECTED] wrote: I don't personally use it, but pam_mkhomedir.so does this too ~ Daniel [EMAIL PROTECTED] wrote: Yep, that's exactly what I'm doing. The actual authentication comes from a domain, the script adds the local user ID, and can create the home directory if necessary. -Original Message- From: Scott Wrosch [mailto:kc8lir;yahoo.com] Sent: Friday, October 25, 2002 2:29 PM To: Hall, Ken (ECSS); [EMAIL PROTECTED] Subject: RE: [Samba] Creating user home directories with domain login I'm sorry, I should have added that this box is not a domain controller. It gets the login info from the domain controller. However, I need it to create the user directory if it doesn't exist when the user logs in. Will a script do that? Thanks for the quick response! Regards, Scott --- Hall, Ken (ECSS) [EMAIL PROTECTED] wrote: There's a login script option at the share level that can be used to run the adduser or useradd command. I'm using a script with some extra smarts, but it can be done pretty easily. -Original Message- From: Scott Wrosch [mailto:kc8lir;yahoo.com] Sent: Friday, October 25, 2002 2:20 PM To: [EMAIL PROTECTED] Subject: [Samba] Creating user home directories with domain login Hello, I've got Samba set up for domain logins and use winbind as well. What I'm wondering is if it's possible for the home directory to be automatically created when the user logs in if it doesn't already exist? If not, anyone have a relatively easy way to do this, in addition to giving the proper owner and group? Thanks, Scott __ Do you Yahoo!? Y! Web Hosting - Let the expert host your web site http://webhosting.yahoo.com/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Unable to change group permissions from Windows
Hello, A little background real quick: I'm running a real small Samba server (latest release). It's located on a Windows domain. So far so good. Everything seems to be working properly. Now, I can get into the public share and create folders and stuff just fine. The problem I'm running into is that I want to be able to restrict access to the folder to a specific domain group. Every time I try to change it through Windows, I get this error: Unable to save permission changes on New Folder. Access is denied. I set up winbind through the Samba documentation online (don't have the link in front of me for the specific instructions), and everything went fine. So, now that I'm getting this error when I'm trying to make the Windows group changes, I'm getting really confused as to what's going on. Any suggestions? Thanks, Scott __ Do you Yahoo!? Y! Web Hosting - Let the expert host your web site http://webhosting.yahoo.com/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba Question w/ RH 7.3 and Windows
Hello, A question I'm sure has been answered before, but I'm still relatively new to Samba, and having just moved, have not been able to locate any of my Samba reference materials. Anyways, I'm running a small Samba server at work using RedHat Linux 7.3. I did not set up Samba during the RedHat installation, but rather downloaded it and installed it afterwards. Anyways, the network uses a Windows 2000 Server as the PDC. And we have various groups set up in the server. What I want to do is set up a share that can be accessible only by the members of a specific group that's already created in the Active Directory setup. Can this be done? I've read as much as I have had the time for, and haven't been able to locate anything that helps. If someone can point me in the right direction, it would be much appreciated. Thanks and regards, Scott M. Wrosch __ Do you Yahoo!? Y! Web Hosting - Let the expert host your web site http://webhosting.yahoo.com/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] (no subject)
confirm 594184 __ Do you Yahoo!? Faith Hill - Exclusive Performances, Videos More http://faith.yahoo.com -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba