serveur_samba
Table des matières
Samba
Installer
# aptitude update # aptitude install samba
Compte guest
# adduser --system --no-create-home --ingroup nogroup --disabled-login smbguest
Verifions:
# id smbguest uid=115(smbguest) gid=65534(nogroup) groupes=65534(nogroup) # passwd -S smbguest smbguest L 10/29/2007 0 99999 7 -1
Config simple avec ''guest''
Editer /etc/samba/smb.conf
.
[global] workgroup = <NOM_DU_WORKGROUP> server string = %h server (Samba %v) map to guest = Bad User null passwords = Yes obey pam restrictions = Yes guest account = smbguest passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n . syslog = 0 log file = /var/log/samba/log.%m max log size = 1000 dns proxy = No ldap ssl = no panic action = /usr/share/samba/panic-action %d invalid users = root hosts allow = 192.168., 127.0 [homes] comment = Home Directories create mask = 0755 browseable = No [printers] comment = All Printers path = /tmp create mask = 0700 printable = Yes browseable = No [print$] comment = Printer Drivers path = /var/lib/samba/printers [public] path = /home/thierry/smbshare/public guest only = Yes guest ok = Yes
Samba et Active Directory
Liens:
ntp
# aptitude install ntp
acl
# aptitude install acl
kerberos
# aptitude install krb5-config krb5-user
: krb5.conf
# kinit administrateur@THIERRY-JAOUEN.FR Password for administrateur@THIERRY-JAOUEN.FR:
# klist Ticket cache: FILE:/tmp/krb5cc_0 Default principal: administrateur@THIERRY-JAOUEN.FR Valid starting Expires Service principal 10/05/10 23:13:38 10/06/10 09:18:21 krbtgt/THIERRY-JAOUEN.FR@THIERRY-JAOUEN.FR renew until 10/06/10 23:13:38 Kerberos 4 ticket cache: /tmp/tkt0 klist: You have no tickets cached
: # aptitude install libpam-krb5
samba
# aptitude install samba winbind
Laisser les réponses par defaut: on va tout changer.
# /etc/init.d/samba stop # /etc/init.d/winbind stop
: creer la conf
/etc/samba/smb.conf
: /etc/nsswitch.conf
tips
Liste des users:
# wbinfo -u
Liste des groupes:
# wbinfo -g
Changer les droits sur un répertoire, une “home” d'un user par exemple:
# mkdir /mnt/home-mon-domaine/tjaouen # chown tjaouen:"utilisa. du domaine" /mnt/home-mon-domaine/tjaouen # ls -lart /mnt/home-mon-domaine drwxr-xr-x 2 tjaouen utilisa. du domaine 4096 oct 6 11:27 tjaouen
vite dit
map ID
Le fichier de “map” entre les ID Windows et les ID Posix:
/var/lib/winbindd_idmap.tdb
serveur_samba.txt · Dernière modification : 2010/10/06 09:39 de thierry