Hello, My server 1 PDC is running Suse Enterprises 11 SP1.
My server 2 is yes indeed running openLDAP.
Server 3 is running Suse Enterprise 11 SP3.
We will leave Samba running on the physical box to support the NFS mounts from the Virtual. I have attached my SMB.conf and have deleted out IP addresses and machine names.
Thanks for your help!
smb.conf is the main Samba configuration file. You find a full commented
version at /usr/share/doc/packages/samba/examples/smb.conf.SUSE if the
samba-doc package is installed.
Date: 2009-09-30
[global]
workgroup = “my domain”
netbios name = “my server name”
server string = file server
netbios aliases = “alias name”
domain logons = Yes
domain master = Yes
security = user
wins support = Yes
Setting log level and one log per client
syslog = 4
log file = /var/log/samba/log.%m
To keep from Samba listening from port 445
smb ports = 139
Setting up Samba printing services
#printing = cups
#printcap name = cups
#printcap cache time = 750
#cups options = raw
#load printers = yes
map to guest = Bad User
include = /etc/samba/dhcp.conf
##logon path = \\\\%L\\profiles\\.msprofile
The next line disable roaming profiles
logon home = \\\\%L\\%U\\.9xprofile
logon drive = H:
logon script = logon.bat
usershare allow guests = No
LDAP Settings
passdb backend = ldapsam:ldap://"myLdap Server"
ldap admin dn = cn=Admin, dc=, dc=, dc=
ldap group suffix = ou=group
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=Machines
ldap passwd sync = Yes
ldap suffix = dc=i, dc=k, dc=edu
ldap user suffix = ou=people
add machine script = /sbin/yast /usr/share/YaST2/data/add_machine.ycp %m$
admin users = autoconfig, clsroot, chw, root
store dos attributes = yes
map acl inherit = yes
enable privileges = yes
##ldapsam:trusted = yes
Added by 09-01-2011 for idmap plug-ina
idmap alloc backend = ldap
idmap alloc config : ldap_url = ldap://myldap server/
idmap alloc config : ldap_base_dn = ou=Idmap,dc=i,dc=k,dc=e
extra debug messages
#log level = 3
hosts allow = 129.130. 10.130. 10.131. 127.0.0.1
remote announce = 129.130.42.255/"hostname"
name resolve order = wins host bcast
time server = Yes
The following few lines to disable printing in samba
load printers = yes
printing = cups
printcap name = cups
cups server = "iP"
#disable spoolss = yes
local master = Yes
os level = 65
preferred master = Yes
ldap ssl = Off
idmap backend = ldap:ldap://"myldap server"
[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = Yes
read only = No
inherit acls = Yes
[profiles]
comment = Network Profiles Service
path = %H
read only = No
store dos attributes = Yes
create mask = 0600
directory mask = 0700
[groups]
comment = All groups
path = /home/groups
read only = No
inherit acls = Yes
Share disabled by YaST
[printers]
comment = All Printers
path = /var/tmp
printable = No
create mask = 0600
browseable = yes
printer admin = @Admins
[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = clsroot
browseable = yes
guest ok = yes
#read only = no
##force group = DomainAdmins
##create mask = 0664
directory mask = 0775
[common]
comment = Common Volume
inherit acls = Yes
force create mode = 0777
security mask = 0777
directory security mask = 0777
force directory mode = 0777
#force security mode = 0
#force directory security mode = 0
path = /common/
read only = No
writeable = Yes
[netlogon]
comment = Network Logon Service
path = /var/lib/samba/netlogon
write list = @Admins
guest ok = no
writeable = no
locking = no
read only = No
[web_backup_aries$]
comment = Website backup from Aries
inherit acls = Yes
path = /home/web_back/Aries/
read only = No
browseable = No
valid users = @Admins
[staff]
path = /home/staff/staff
force group = Staff
force create mode = 0770
security mask = 0770
directory security mask = 0770
force security mode = 0
force directory security mode = 0
browseable = no
writeable = Yes
read only = No
write list = @faculty @Staff
valid users = @faculty @Staff
[health]
#path = /home/health
path = /research/health
#force group = Health
browseable = no
force create mode = 0777
security mask = 0777
directory security mask = 0777
force security mode = 0
force directory security mode = 0
writeable = yes
read only = No
write list = @Health
valid users = @Health
[apps]
comment = apps shared for the computer lab
#valid users = %S
guest ok = No
inherit acls = Yes
path = /home/appvol/
read only = Yes
write list = @Admins
[images]
inherit acls = Yes
path = /home/images/
read only = No
valid users = clsroot, chw
[backup$]
comment = backup to Elijah
guest ok = No
inherit acls = Yes
path = /home
read only = No
valid users = @Admins
write list = @Admins
[iesearch]
#path = /home/iesearch
path = /research/iesearch
force group = iesearch
browseable = no
force create mode = 0777
security mask = 0777
directory security mask = 0777
force security mode = 0
force directory security mode = 0
writeable = yes
read only = No
write list = @iesearch
valid users = @iesearch
[qelab]
path = /research/qelab
force group = qelab
browseable = no
writeable = yes
read only = No
write list = @qelab
valid users = @qelab
force create mode = 0770
force directory mode = 0770
directory security mask = 0777
force directory security mode = 0
force security mode = 0
security mask = 0777
[humlog]
path = /research/humlog
force group = humlog
browseable = no
writeable = yes
read only = No
write list = @humlog @Admins
valid users = @humlog @Admins
force create mode = 0770
force directory mode = 0770
directory security mask = 0777
force directory security mode = 0
force security mode = 0
security mask = 0777
[humlog_srdesign]
path = /research/humlog_srdesign
force group = humlog_srdesign
browseable = no
writeable = yes
read only = No
write list = @humlog_srdesign @Admins
valid users = @humlog_srdesign @Admins
force create mode = 0770
force directory mode = 0770
directory security mask = 0777
force directory security mode = 0
force security mode = 0
security mask = 0777
[vch]
path = /research/vch
force group = vch
browseable = no
writeable = yes
read only = No
write list = @vch @Admins
valid users = @vch @Admins
force create mode = 0770
force directory mode = 0770
directory security mask = 0777
force directory security mode = 0
force security mode = 0
security mask = 0777
[research$]
path = /research/
force group = Admins
browseable = no
writeable = yes
read only = No
write list = @Admins
valid users = @Admins
force create mode = 0770
force directory mode = 0770
directory security mask = 0777
force directory security mode = 0
force security mode = 0
security mask = 0777
[license]
comment = apps shared for the computer lab
guest ok = No
inherit acls = Yes
path = /home/license_vol/
read only = Yes
valid users = @Staff, @Faculty, autoconfig
write list = @Admins