NWとかLinuxなんかに関する技術的なものを記載してます。。。てかぶっちゃけ。備忘録ですw
一部Solarisとかも書いたりするかもしれませんw
最近は仮想化やストレージなんかにも興味あって手出したりしてますw
カテゴリー
最新記事
(11/29)
(11/24)
(11/24)
(11/24)
(11/23)
カレンダー
| 01 | 2025/02 | 03 |
| S | M | T | W | T | F | S |
|---|---|---|---|---|---|---|
| 1 | ||||||
| 2 | 3 | 4 | 5 | 6 | 7 | 8 |
| 9 | 10 | 11 | 12 | 13 | 14 | 15 |
| 16 | 17 | 18 | 19 | 20 | 21 | 22 |
| 23 | 24 | 25 | 26 | 27 | 28 |
バーコード
ブログ内検索
Blogランキング
<AD>
PR
amazon
ムームードメイン
アクセス解析
2009/03/24 (Tue)
samba + OpenLDAPでPDCを作る②
とりあえず昨日の続きから…
viで/etc/samba/smb.confを開きます。
# vi /etc/samba/smb.conf
とりあえず全てコメントアウトして以下を追加します。
~~~~~~~~ここからsmb.conf~~~~~~~~
[global]
dos charset = CP932
display charset = UTF-8
workgroup = MYDOMAIN
netbios name = SERVER
server string = Samba Server %v
passdb backend = ldapsam:ldap://127.0.0.1/
passwd program = /usr/local/sbin/smbldap-passwd -u %u
passwd chat = "Changing password for*\nNew password*" %n\n "*Retype new password*" %n\n"
unix password sync = Yes
syslog = 0
log file = /var/log/samba/log.%m
max log size = 100000
time server = Yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
add user script = /usr/local/sbin/smbldap-useradd -m "%u"
delete user script = /usr/local/sbin/smbldap-userdel "%u"
add group script = /usr/local/sbin/smbldap-groupadd -p "%g"
delete group script = /usr/local/sbin/smbldap-groupdel "%g"
add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g"
delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g"
set primary group script = /usr/local/sbin/smbldap-usermod -g '%g' '%u'
add machine script = /usr/local/sbin/smbldap-useradd -t 0 -w "%u"
domain logons = Yes
logon path =
logon home =
os level = 65
preferred master = Yes
domain master = Yes
wins support = Yes
ldap admin dn = cn=manager,dc=mydomain,dc=com
ldap delete dn = Yes
ldap group suffix = ou=Groups
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=Computers
ldap passwd sync = Yes
ldap suffix = dc=mydomain,dc=com
ldap user suffix = ou=Users
~~~~~~~~以下略~~~~~
[netlogon]
; comment = Network Logon Service
path = /home/netlogon
guest ok = yes
writable = no
share modes = no
~~~ここから移動プロファイルの設定。
[Profiles]
path = /home/profiles
writable = yes
browseable = no
create mask = 0600
directory mask = 0700
profile acls = yes
~~~~~~~~ここまで~~~~~~~~~
てな感じでSamba側の設定は完了。
2.Sambaの設定
2-1.Sambaの設定ファイルの編集
viで/etc/samba/smb.confを開きます。
# vi /etc/samba/smb.conf
とりあえず全てコメントアウトして以下を追加します。
~~~~~~~~ここからsmb.conf~~~~~~~~
[global]
dos charset = CP932
display charset = UTF-8
workgroup = MYDOMAIN
netbios name = SERVER
server string = Samba Server %v
passdb backend = ldapsam:ldap://127.0.0.1/
passwd program = /usr/local/sbin/smbldap-passwd -u %u
passwd chat = "Changing password for*\nNew password*" %n\n "*Retype new password*" %n\n"
unix password sync = Yes
syslog = 0
log file = /var/log/samba/log.%m
max log size = 100000
time server = Yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
add user script = /usr/local/sbin/smbldap-useradd -m "%u"
delete user script = /usr/local/sbin/smbldap-userdel "%u"
add group script = /usr/local/sbin/smbldap-groupadd -p "%g"
delete group script = /usr/local/sbin/smbldap-groupdel "%g"
add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g"
delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g"
set primary group script = /usr/local/sbin/smbldap-usermod -g '%g' '%u'
add machine script = /usr/local/sbin/smbldap-useradd -t 0 -w "%u"
domain logons = Yes
logon path =
logon home =
os level = 65
preferred master = Yes
domain master = Yes
wins support = Yes
ldap admin dn = cn=manager,dc=mydomain,dc=com
ldap delete dn = Yes
ldap group suffix = ou=Groups
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=Computers
ldap passwd sync = Yes
ldap suffix = dc=mydomain,dc=com
ldap user suffix = ou=Users
~~~~~~~~以下略~~~~~
[netlogon]
; comment = Network Logon Service
path = /home/netlogon
guest ok = yes
writable = no
share modes = no
~~~ここから移動プロファイルの設定。
[Profiles]
path = /home/profiles
writable = yes
browseable = no
create mask = 0600
directory mask = 0700
profile acls = yes
~~~~~~~~ここまで~~~~~~~~~
てな感じでSamba側の設定は完了。
この記事にコメントする