Hi!
Sorry das ich erst jetzt antworte, ich bin nicht regelmäßig an der Qnap. Das ist sozusagen ein freiwilliges Projekt für eine Gruppe
Ich habe nun noch einmal die Qnap resettet und bin die komplette Anleitung durch und habe alles im Debug-Modus heraus kopiert. Vielleicht findet sich der Fehler so leichter.
Meine Schritte:
- Qnap resettet
- Alle Dienste deaktiviert
- LDAP und SMB nach Anleitung aktiviert
- QPKG installiert
Dann den PDC aktiviert:
Developer messages switched on################################################# Domain 'test' ################################################## 1) Activate primary domain controler [ -- ] ##-----------------------------------------------## 6) Create profile share [ -- ] ##-----------------------------------------------## ## m) manage accounts for windows workstations ## u) User/Group management ## p) manage privileges ## ## o) overview ## s) status ## l) log ## ## e) expert mode [ on ] ## d) developer mode [ on ] ## ## x) Exit ## ################################################## 2013-06-25 SAMBA-PDC QPKG V3.0.43 SAMBA Version 3.5.2 TS-869 3.8.3-20130426 #################################################1---> StartNeed admin password to manage the samba internaThe password will not store in any fileand will forget after ending of the scriptadmin---> Creating LDAP-Structure for windows workstation---> LDAP_ENTRY = sambaDomainName=test---> LDAP_ENTRY_FOUND = FALSEadding new entry "sambaDomainName=test,dc=test,dc=local"ldap_add: Already exists (68)dn: sambaDomainName=test,dc=test,dc=localobjectClass: sambaDomainsambaDomainName: testsambaAlgorithmicRidBase: 1000sambaMinPwdLength: 5sambaPwdHistoryLength: 0sambaLogonToChgPwd: 0sambaMaxPwdAge: -1sambaMinPwdAge: 0sambaLockoutDuration: 30sambaLockoutObservationWindow: 30sambaLockoutThreshold: 0sambaForceLogoff: -1sambaRefuseMachinePwdChange: 0sambaSID: S-1-5-21-938640639-839290756-3166917716sambaNextUserRid: 1001---> LDAP_ENTRY = ou=hosts---> LDAP_ENTRY_FOUND = FALSEadding new entry "ou=hosts,dc=test,dc=local"dn: ou=hosts,dc=test,dc=localou: hostsobjectClass: organizationalUnitdescription: machine accounts---> Done---> Creating domain groups and domain admin---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-512---> SMB_GROUP_RID =---> LDAP_GROUP_FOUND = FALSEadding new entry "cn=Domain Admins,ou=group,dc=test,dc=local"dn: cn=Domain Admins,ou=group,dc=test,dc=localobjectClass: topobjectClass: posixGroupobjectClass: sambaGroupMappingobjectClass: sambaIdmapEntryobjectClass: apple-groupcn: Domain AdminsgidNumber: 0displayName: Domain Adminsdescription: Domain AdminssambaGroupType: 2sambaSID: S-1-5-21-938640639-839290756-3166917716-512---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-1000---> SMB_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-1000---> LDAP_GROUP_FOUND = TRUE---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-513---> SMB_GROUP_RID =---> LDAP_GROUP_FOUND = FALSEmodifying entry "cn=Domain Users,ou=group,dc=test,dc=local"dn: cn=Domain Users,ou=group,dc=test,dc=localchangetype: modifyreplace: sambaSIDsambaSID: S-1-5-21-938640639-839290756-3166917716-513-replace: gidNumbergidNumber: 100---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-514---> SMB_GROUP_RID =---> LDAP_GROUP_FOUND = FALSEadding new entry "cn=Domain Guests,ou=group,dc=test,dc=local"dn: cn=Domain Guests,ou=group,dc=test,dc=localobjectClass: topobjectClass: posixGroupobjectClass: sambaGroupMappingobjectClass: sambaIdmapEntryobjectClass: apple-groupcn: Domain GuestsgidNumber: 65534displayName: Domain Guestsdescription: Domain GuestssambaGroupType: 2sambaSID: S-1-5-21-938640639-839290756-3166917716-514---> WIN_USER_RID = S-1-5-21-938640639-839290756-3166917716-500---> SMB_USER_RID =---> LDAP_USER_FOUND = FALSEadding new entry "uid=Administrator,ou=people,dc=test,dc=local"dn: uid=Administrator,ou=people,dc=test,dc=localobjectClass: topobjectClass: posixAccountobjectClass: shadowAccountobjectClass: personobjectClass: organizationalPersonobjectClass: inetOrgPersonobjectClass: sambaSamAccountobjectClass: sambaIdmapEntryobjectClass: apple-useruidNumber: 1000000gidNumber: 0uid: Administratorcn: Administratorsn: AdministratordisplayName: Administratordescription: AdministratoruserPassword: xxxshadowFlag: 0shadowMin: 0shadowWarning: 7shadowMax: 99999shadowInactive: 0shadowLastChange: 1372174320shadowExpire: -1homeDirectory: /share/MD0_DATA//DOMAIN=test/AdministratorloginShell: /bin/shsambaSID: S-1-5-21-938640639-839290756-3166917716-500sambaPrimaryGroupSID: S-1-5-21-938640639-839290756-3166917716-512sambaAcctFlags: [U ]sambaLogonScript: login.cmdsambaNTPassword: xxxsambaLMPassword: xxxsambaPwdLastSet: 1372174320sambaPasswordHistory: 0000000000000000000000000000000000000000000000000000000000000000sambaPwdCanChange: 1sambaPwdMustChange: 0sambaKickoffTime: 0modifying entry "cn=curid,ou=idpoolconf,dc=test,dc=local"dn: cn=curid,ou=idpoolconf,dc=test,dc=localchangetype: modifyreplace: uidNumberuidNumber: 1000001---> WIN_USER_RID = S-1-5-21-938640639-839290756-3166917716-501---> SMB_USER_RID =---> LDAP_USER_FOUND = FALSEadding new entry "uid=Guest,ou=people,dc=test,dc=local"dn: uid=Guest,ou=people,dc=test,dc=localobjectClass: topobjectClass: posixAccountobjectClass: shadowAccountobjectClass: personobjectClass: organizationalPersonobjectClass: inetOrgPersonobjectClass: sambaSamAccountobjectClass: sambaIdmapEntryobjectClass: apple-useruidNumber: 65534gidNumber: 65534uid: Guestcn: guestsn: guestdisplayName: Guestdescription: GuestuserPassword: xxxshadowFlag: 0shadowMin: 0shadowWarning: 7shadowMax: 99999shadowInactive: 0shadowLastChange: 1372174320shadowExpire: -1homeDirectory: /share/MD0_DATA//DOMAIN=test/GuestloginShell: /bin/shsambaSID: S-1-5-21-938640639-839290756-3166917716-501sambaPrimaryGroupSID: S-1-5-21-938640639-839290756-3166917716-514sambaAcctFlags: [U ]sambaLogonScript: login.cmdsambaNTPassword: xxxsambaLMPassword: xxxsambaPwdLastSet: 1372174320sambaPasswordHistory: 0000000000000000000000000000000000000000000000000000000000000000sambaPwdCanChange: 1sambaPwdMustChange: 0sambaKickoffTime: 0To add a workstation to the Domain,you have to use the username "Administrator" and the password "admin" !---> Done---> Modify SAMBA-Settings/sbin/setcfg global "wins support" "yes" -f /etc/config/smb.conf/sbin/setcfg global "domain logons" "yes" -f /etc/config/smb.conf/sbin/setcfg global "logon script" "login.cmd" -f /etc/config/smb.conf/sbin/setcfg global "domain master" "yes" -f /etc/config/smb.confRestarting SMB services:Shutting down SMB services: smbd nmbd.Shutting down winbindd services: winbindd.locks path was set to /share/MD0_DATA/.locksStarting winbindd services:Starting SMB services: smbd nmbd.done.---> Done---> Creating User-Privileges/usr/local/samba/bin/net rpc rights grant "Administrator" SeMachineAccountPrivilege SeTakeOwnershipPrivilege SeBackupprivilege SeRestorePrivilege SePrintOperatorPrivilege SeAddUsersPrivilege SeDiskOperatorPrivilege SeRemoteShutDownPrivilege/usr/local/samba/bin/net rpc rights grant "Domain Admins" SeMachineAccountPrivilege SeTakeOwnershipPrivilege SeBackupprivilege SeRestorePrivilege SePrintOperatorPrivilege SeAddUsersPrivilege SeDiskOperatorPrivilege SeRemoteShutDownPrivilege---> Done---> Creating Netlogon share2013-06-25_17-30 : Folder "/share/MD0_DATA/Netlogon" created2013-06-25_17-30 : Netlogon-Files copied to share "Netlogon"/bin/cp: cannot stat `/share/MD0_DATA/.qpkg/SAMBA-PDC/Public/*': No such file or directory2013-06-25_17-30 : Public-Files copied to share "Public"2013-06-25_17-30 : Share "Netlogon" created---> Done---> Check domain groups and domain admin---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-512---> SMB_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-512---> LDAP_GROUP_FOUND = TRUE---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-513---> SMB_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-513---> LDAP_GROUP_FOUND = TRUE---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-514---> SMB_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-514---> LDAP_GROUP_FOUND = TRUE---> WIN_USER_RID = S-1-5-21-938640639-839290756-3166917716-500---> SMB_USER_RID = S-1-5-21-938640639-839290756-3166917716-500---> LDAP_USER_FOUND = TRUE---> WIN_USER_RID = S-1-5-21-938640639-839290756-3166917716-501---> SMB_USER_RID = S-1-5-21-938640639-839290756-3166917716-501---> LDAP_USER_FOUND = TRUE---> SMB_DOM_GROUPS_MAX = 3---> SMB_DOM_GROUPS = 3---> SMB_DOM_USERS_MAX = 2---> SMB_DOM_USERS = 2---> Do you want to add a windows workstation to the domain---> 'c' for cancel or name of the windows workstationc ---> Done
Profil share erzeugt:
################################################# Domain 'test' ################################################## 1) ReLoad Settings of PDC [done] ## ## 1off) DeActivate PDC [ -- ] ## 2) ReCreate domain groups [done] ## 3) Create add. domain groups [ -- ] ## 4) ReCreate netlogon share [done] ##-----------------------------------------------## 6) Create profile share [ -- ] ##-----------------------------------------------## ## m) manage accounts for windows workstations ## u) User/Group management ## p) manage privileges ## ## o) overview ## s) status ## l) log ## ## e) expert mode [ on ] ## d) developer mode [ on ] ## ## x) Exit ## ################################################## 2013-06-25 SAMBA-PDC QPKG V3.0.43 SAMBA Version 3.5.2 TS-869 3.8.3-20130426 #################################################6---> Start---> Creating Profiles share2013-06-25_17-30 : Folder "/share/MD0_DATA/Profiles" created2013-06-25_17-30 : Share "Profiles" created---> Done
Testrechner Maschinenaccount angelegt:
################################################# Domain 'test' ################################################## 1) ReLoad Settings of PDC [done] ## ## 1off) DeActivate PDC [ -- ] ## 2) ReCreate domain groups [done] ## 3) Create add. domain groups [ -- ] ## 4) ReCreate netlogon share [done] ##-----------------------------------------------## 6) ReCreate profile share [done] ## ## 6del) Delete profile share and data [ -- ] ##-----------------------------------------------## ## m) manage accounts for windows workstations ## u) User/Group management ## p) manage privileges ## ## o) overview ## s) status ## l) log ## ## e) expert mode [ on ] ## d) developer mode [ on ] ## ## x) Exit ## ################################################## 2013-06-25 SAMBA-PDC QPKG V3.0.43 SAMBA Version 3.5.2 TS-869 3.8.3-20130426#################################################m---> Done############################################## ## 1) List all workstations ## 2) Add account for a windows client ## 3) Delete account of a windows client ## ## b) Back to root menu ## x) Exit ## ##############################################1---> Start---> DonePress any key############################################## ## 1) List all workstations ## 2) Add account for a windows client ## 3) Delete account of a windows client ## ## b) Back to root menu ## x) Exit ## ##############################################2---> Start---> Your pc name to add to the domaintestrechneradding new entry "uid=testrechner$,ou=hosts,dc=test,dc=local"dn: uid=testrechner$,ou=hosts,dc=test,dc=localobjectClass: topobjectClass: accountobjectClass: posixAccountobjectClass: sambaSamAccountuid: testrechner$cn: testrechneruidNumber: 1000001gidNumber: 515homeDirectory: /nullsambaSID: S-1-5-21-938640639-839290756-3166917716-1001sambaPrimaryGroupSID: S-1-5-21-938640639-839290756-3166917716-515displayName:host testrechnersambaNTPassword: xxxsambaPwdLastSet: 1372175308sambaAcctFlags: [NW]modifying entry "cn=curid,ou=idpoolconf,dc=test,dc=local"dn: cn=curid,ou=idpoolconf,dc=test,dc=localchangetype: modifyreplace: uidNumberuidNumber: 1000002modifying entry "sambaDomainName=test,dc=test,dc=local"dn: sambaDomainName=test,dc=test,dc=localchangetype: modifyreplace: sambaNextUserRidsambaNextUserRid: 1002---> Done---> Done
Script neu gestartet und Logs anzeigen lassen:
[~] # smb_cmd.shTIME_STAMP = 1372175374##### COMMON EXPRESSIONS #####---> DEFAULT_CFG_FILE = /etc/config/uLinux.conf---> SAMBA_CFG_FILE = /etc/config/smb.conf---> STORAGE_CFG_FILE = /etc/storage.conf##### COMMON CONFIG #####---> QNAP_BASE = /share/MD0_DATA---> QNAP_NAS_VERSION = 3.8.3-20130426---> QNAP_NAS_MODEL = TS-869'lib.cgi' loaded##### SAMBA CONFIG #####---> SMB_MACHINE_SID = S-1-5-21-2706376394-2326446743-1448245661---> SMB_SHARE_PROFILES_DEFAULT = Profiles---> SMB_SHARE_NETLOGON_DEFAULT = Netlogon---> SMB_SCRIPT_NETLOGON = login.cmd---> SMB_SCRIPT_PROFILES = smb_pdc.sh---------------------------------> SMB_ENABLED = TRUE---> SMB_ACL = FALSE---> SMB_DOMAIN_NAME = test---> SMB_DOMAIN_LOGON = yes---> SMB_DOMAIN = no---> SMB_MASTER = yes---> SMB_LOCAL_MASTER = yes---> SMB_WINS = yes---> SMB_SECURITY = USER---> SMB_HOSTNAME = NASD45B1F---> SMB_DOMAIN_CONTROLLER = PDC ( Primary )---> SMB_OSs = Linux Vista Win95 Win2K WinNT WinXP WinXP64 Win2K3 Samba---> SMB_PATH_HOMES = no---> SMB_SHARE_PROFILES = Profiles---> SMB_PATH_PROFILES = /share/MD0_DATA/Profiles/%a/%u---> SMB_SHARE_NETLOGON = Netlogon---> SMB_PATH_NETLOGON = /share/MD0_DATA/Netlogon---> SMB_PATH_HOMES_TEMPLATE = /share/homes/DOMAIN=%D/%U---> SMB_PATH_LOGON_DRIVE = no---> SMB_PATH_LOGON_PATH = \\%L\Profiles---> SMB_PATH_LOGON_HOME = no'lib_smb.sh' loaded##### LDAP CONFIG #####---> LDAP_CLIENT_ENABLED = TRUE---> LDAP_SERVER_ENABLED = TRUE---> LDAP_SERVER_HOST = 127.0.0.1---> LDAP_PASSWD = test123---> LDAP_SUFFIX_DN = dc=test,dc=local---> LDAP_SUFFIX_USER = people---> LDAP_SUFFIX_GROUP = group---> LDAP_SUFFIX_HOST = hosts---> LDAP_SUFFIX_IDMAP =---> SMB_SID = S-1-5-21-938640639-839290756-3166917716---> SMB_NextRID = 1002---> SMB_CurUID = 1000002---> SMB_CurGID = 1000001---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-512---> SMB_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-512---> LDAP_GROUP_FOUND = TRUE---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-513---> SMB_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-513---> LDAP_GROUP_FOUND = TRUE---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-514---> SMB_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-514---> LDAP_GROUP_FOUND = TRUE---> WIN_USER_RID = S-1-5-21-938640639-839290756-3166917716-500---> SMB_USER_RID = S-1-5-21-938640639-839290756-3166917716-500---> LDAP_USER_FOUND = TRUE---> WIN_USER_RID = S-1-5-21-938640639-839290756-3166917716-501---> SMB_USER_RID = S-1-5-21-938640639-839290756-3166917716-501---> LDAP_USER_FOUND = TRUE---> SMB_DOM_GROUPS_MAX = 3---> SMB_DOM_GROUPS = 3---> SMB_DOM_USERS_MAX = 2---> SMB_DOM_USERS = 2---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-515---> SMB_GROUP_RID =---> LDAP_GROUP_FOUND = FALSE---> WIN_GROUP_RID = S-1-5-21-938640639-839290756-3166917716-516---> SMB_GROUP_RID =---> LDAP_GROUP_FOUND = FALSE---> SMB_DOM_EXP_GROUPS_MAX = 2---> SMB_DOM_EXP_GROUPS = 0'lib_ldap.sh' loaded'lib_shares.sh' loaded'lib_cmd.sh' loaded################################################# Domain 'test'################################################## 1) ReLoad Settings of PDC [done] ## ## 1off) DeActivate PDC [ -- ] ## 2) ReCreate domain groups [done] ## 3) Create add. domain groups [ -- ] ## 4) ReCreate netlogon share [done] ##-----------------------------------------------## 6) ReCreate profile share [done] ## ## 6del) Delete profile share and data [ -- ] ##-----------------------------------------------## ## m) manage accounts for windows workstations ## u) User/Group management ## p) manage privileges ## ## o) overview ## s) status ## l) log ## ## e) expert mode [ on ] ## d) developer mode [ on ] ## ## x) Exit ## ################################################## 2013-06-25 SAMBA-PDC QPKG V3.0.43 SAMBA Version 3.5.2 TS-869 3.8.3-20130426#################################################lConnection failed: NT_STATUS_LOGON_FAILURE2013-06-25_17-30 : /usr/local/samba/bin/net rpc rights grant "Administrator" SeMachineAccountPrivilege SeTakeOwnershipPrivilege SeBackupprivilege SeRestorePrivilege SePrintOperatorPrivilege SeAddUsersPrivilege SeDiskOperatorPrivilege SeRemoteShutDownPrivilege Could not connect to server 127.0.0.1The username or password was not correct.Connection failed: NT_STATUS_LOGON_FAILURE2013-06-25_17-30 : /usr/local/samba/bin/net rpc rights grant "Domain Admins" SeMachineAccountPrivilege SeTakeOwnershipPrivilege SeBackupprivilege SeRestorePrivilege SePrintOperatorPrivilege SeAddUsersPrivilege SeDiskOperatorPrivilege SeRemoteShutDownPrivilege2013-06-25_17-30 : Share "Netlogon" created2013-06-25_17-30 : Folder "/share/MD0_DATA/Profiles" created2013-06-25_17-30 : Share "Profiles.V2" created2013-06-25_17-30 : Share "Profiles" createdPress any key
Hier der Befehl aus Deinem letzten Post:
[~] # /usr/local/samba/bin/net shareEnter admin's password: Network Recycle Bin 1PublicUsbWebRecordingsDownloadMultimediaIPC$
Anschliessend auf dem Client die "ntdomain_win7.reg" importiert und ihn neu gestartet:
ein Tip von mir: die Datei "ntdomain_win7.reg" im NETLOGON Share hat
Unix Zeilenumbrüche. Du kannst die Datei (sofern du auf der Qnap mit
"vim" arbeitest) mit ":set ff=dos" und ein ":w" mit Windows Zeilenum-
brüchen speichern.
Anschliessend versucht den Client zu joinen (mit Administrator/admin), ich bekomme aber die Fehlermeldung:
"Beim dem Versuch der Domäne Test beizutreten, trat der folgende Fehler auf:Anmeldung fehlgeschlagen: Unbekannter Benutzername oder falsches Kennwort"
Das komplette Logfile aus /share/MD0_DATA/.qpkg/SAMBA-PDC/log:
[/share/MD0_DATA/.qpkg/SAMBA-PDC/log] # more 2013-06-25_log.smb 2013-06-25_17-30 : /sbin/setcfg global "ldap machine suffix" "ou=hosts" -f /etc/config/smb.conf -c2013-06-25_17-30 : /sbin/setcfg global "wins support" "yes" -f /etc/config/smb.conf -c2013-06-25_17-30 : /sbin/setcfg global "domain logons" "yes" -f /etc/config/smb.conf -c2013-06-25_17-30 : /sbin/setcfg global "logon script" "login.cmd" -f /etc/config/smb.conf -c2013-06-25_17-30 : /sbin/setcfg global "domain master" "yes" -f /etc/config/smb.conf -c2013-06-25_17-30 : ##### Create system rights for Administrator #####Could not connect to server 127.0.0.1The username or password was not correct.Connection failed: NT_STATUS_LOGON_FAILURE2013-06-25_17-30 : /usr/local/samba/bin/net rpc rights grant "Administrator" SeMachineAccountPrivilege SeTakeOwnershipPrivilege SeBackupprivilege SeRestorePrivilege SePrintOperatorPrivilege SeAddUsersPrivilege SeDiskOperatorPrivilege SeRemoteShutDownPrivilege Could not connect to server 127.0.0.1The username or password was not correct.Connection failed: NT_STATUS_LOGON_FAILURE2013-06-25_17-30 : /usr/local/samba/bin/net rpc rights grant "Domain Admins" SeMachineAccountPrivilege SeTakeOwnershipPrivilege SeBackupprivilege SeRestorePrivilege SePrintOperatorPrivilege SeAddUsersPrivilege SeDiskOperatorPrivilege SeRemoteShutDownPrivilege2013-06-25_17-30 : Share "Netlogon" created2013-06-25_17-30 : Folder "/share/MD0_DATA/Profiles" created2013-06-25_17-30 : Share "Profiles.V2" created2013-06-25_17-30 : Share "Profiles" created
Mehr Logs habe ich nicht gefunden, dafür mit Symlinks verschachtelte und auf sich
selbst referenzierende Verzeichnisse:
[/share/MD0_DATA/.qpkg/SAMBA-PDC] # ls -l /var/log/sambalrwxrwxrwx 1 admin administ 20 Apr 26 13:23 /var/log/samba -> /usr/local/samba/var[/share/MD0_DATA/.qpkg/SAMBA-PDC] # ls -l /usr/local/sambalrwxrwxrwx 1 admin administ 18 Jun 25 16:56 /usr/local/samba -> /mnt/ext/opt/samba[/share/MD0_DATA/.qpkg/SAMBA-PDC] # ls -l /mnt/ext/opt/sambadrwxr-xr-x 2 admin administ 4096 Apr 26 13:04 bindrwxr-xr-x 2 admin administ 4096 Jun 25 16:58 libdrwxr-xr-x 2 admin administ 4096 Apr 26 13:04 privatedrwxr-xr-x 2 admin administ 4096 Apr 26 13:04 sbindrwxr-xr-x 2 admin administ 4096 Jun 25 16:58 var[/share/MD0_DATA/.qpkg/SAMBA-PDC] # ls -l /mnt/ext/opt/samba/var/lrwxrwxrwx 1 admin administ 22 Jun 25 16:58 locks -> /share/MD0_DATA/.lockslrwxrwxrwx 1 admin administ 20 Jun 25 16:56 var -> /usr/local/samba/var[/share/MD0_DATA/.qpkg/SAMBA-PDC] # ls -l /mnt/ext/opt/samba/var/varlrwxrwxrwx 1 admin administ 20 Jun 25 16:56 /mnt/ext/opt/samba/var/var -> /usr/local/samba/var
Hier noch meine smb.conf:
[global]
passdb backend = ldapsam:ldap://127.0.0.1
workgroup = test
security = USER
server string = PDC Test
encrypt passwords = Yes
username level = 0
map to guest = Bad User
null passwords = yes
max log size = 10
socket options = TCP_NODELAY SO_KEEPALIVE SO_SNDBUF=262144 SO_RCVBUF=131072
os level = 20
preferred master = no
dns proxy = No
smb passwd file=/etc/config/smbpasswd
username map = /etc/config/smbusers
guest account = guest
directory mask = 0777
create mask = 0777
oplocks = yes
locking = yes
disable spoolss = yes
load printers = no
display charset = UTF8
force directory security mode = 0000
veto files = /.AppleDB/.AppleDouble/.AppleDesktop/:2eDS_Store/Network Trash Folder/Temporary Items/TheVolumeSettingsFolder/.@__thumb/.@__desc/:2e*/
delete veto files = yes
map archive = no
map system = no
map hidden = no
map read only = no
deadtime = 10
use sendfile = yes
unix extensions = no
store dos attributes = yes
client ntlmv2 auth = yes
dos filetime resolution = no
inherit acls = yes
wide links = yes
force unknown acl user = yes
template homedir = /share/homes/DOMAIN=%D/%U
domain logons = yes
min receivefile size = 4096
case sensitive = auto
domain master = yes
local master = yes
enhance acl v1 = yes
remove everyone = no
kernel oplocks = no
mangled names = no
printcap cache time = 0
ldap admin dn = cn=admin,dc=test,dc=local
ldap suffix = dc=test,dc=local
ldap user suffix = ou=people
ldap group suffix = ou=group
ldap ssl = off
wins support = yes
ldap machine suffix = ou=hosts
logon script = login.cmd
logon path = \\%L\Profiles
[Multimedia]
comment = System default share
path = /share/MD0_DATA/Multimedia
browsable = yes
oplocks = yes
ftp write only = no
public = yes
invalid users = guest
read list = @"everyone"
write list = admin
valid users = root,@"everyone",admin
inherit permissions = yes
[Download]
comment = System default share
path = /share/MD0_DATA/Download
browsable = yes
oplocks = yes
ftp write only = no
public = yes
invalid users = guest
read list =
write list = admin
valid users = root,admin
inherit permissions = yes
[Recordings]
comment = System default share
path = /share/MD0_DATA/Recordings
browsable = yes
oplocks = yes
ftp write only = no
public = yes
invalid users = guest
read list =
write list = admin
valid users = root,admin
inherit permissions = yes
[Web]
comment = System default share
path = /share/MD0_DATA/Web
browsable = yes
oplocks = yes
ftp write only = no
public = yes
invalid users = guest
read list =
write list = admin
valid users = root,admin
inherit permissions = yes
[Usb]
comment = System default share
path = /share/MD0_DATA/Usb
browsable = yes
oplocks = yes
ftp write only = no
public = yes
invalid users = guest
read list =
write list = admin
valid users = root,admin
inherit permissions = yes
[Public]
comment = System default share
path = /share/MD0_DATA/Public
browsable = yes
oplocks = yes
ftp write only = no
public = yes
invalid users = guest
read list = @"everyone"
write list = admin
valid users = root,@"everyone",admin
inherit permissions = yes
[Network Recycle Bin 1]
comment = [RAID5 Disk Volume: Drive 1 2 3 4 5 6 7 8]
path = /share/MD0_DATA/Network Recycle Bin
browsable = yes
oplocks = yes
ftp write only = no
public = yes
invalid users = guest
read list = @"everyone"
write list = admin
valid users = root,@"everyone",admin
inherit permissions = yes
[Netlogon]
comment = Network Logon Service
path = /share/MD0_DATA/Netlogon
public = yes
guest ok = yes
browseable = no
read only = yes
root preexec = /share/MD0_DATA/Netlogon/login.sh %u %m %I %D %H
[Profiles]
comment = Home Directories
path = /share/MD0_DATA/Profiles/%a/%u
read only = no
guest ok = no
browseable = no
csc policy = disable
create mask = 0666
directory mask = 0777
root preexec = /share/MD0_DATA/.qpkg/SAMBA-PDC/smb_pdc.sh create_profiles_folder %u %a %I %m %D %H
hide files = /desktop.ini/ntuser.ini/NTUSER.*/
profile acls = no
[Profiles.V2]
copy = Profiles
Alles anzeigen
Ich hoffe du hast nun genug Informationen. Wenn ich vorab noch etwas tun kann oder Du einen weiteren Tip hast: Vielen Dank!
Thanks a lot!