From e6b1eb9f52ff81c83779db0b738f25f1843673f9 Mon Sep 17 00:00:00 2001 From: Gerald Carter Date: Fri, 3 May 2002 01:19:03 +0000 Subject: last minute doc update. Doh! --- docs/htmldocs/Samba-HOWTO-Collection.html | 96 +++--- docs/htmldocs/smb.conf.5.html | 473 +++++++++++++----------------- 2 files changed, 263 insertions(+), 306 deletions(-) (limited to 'docs/htmldocs') diff --git a/docs/htmldocs/Samba-HOWTO-Collection.html b/docs/htmldocs/Samba-HOWTO-Collection.html index 94622622cf4..d6c92a65cab 100644 --- a/docs/htmldocs/Samba-HOWTO-Collection.html +++ b/docs/htmldocs/Samba-HOWTO-Collection.html @@ -878,29 +878,29 @@ HREF="#AEN2015" >
11.5.1. Introduction
11.5.2. Requirements
11.5.3. Testing Things Out
11.5.3.1. Configure and compile SAMBA
11.5.3.2. Configure nsswitch.conf
11.5.3.3. Configure smb.conf
11.5.3.4. Join the SAMBA server to the PDC domain
11.5.3.5. Start up the winbindd daemon and test it!
11.5.3.6. Fix the /etc/rc.d/init.d/smb
11.5.3.7. Configure Winbind and PAM
11.6. Limitations
11.7. Conclusion
12.1. FAQs
12.1.1. How can I configure OS/2 Warp Connect or OS/2 Warp 4 as a client for Samba?
12.1.2. How can I configure OS/2 Warp 3 (not Connect), OS/2 1.2, 1.3 or 2.x for Samba?
12.1.3. Are there any other issues when OS/2 (any version) is used as a client?
12.1.4. How do I get printer driver download working for OS/2 clients?
13.1. Introduction
13.2. CVS Access to samba.org
13.2.1. Access via CVSweb
13.2.2. Access via cvs
Index
This HOWTO describes how to get winbind services up and running to control access and authenticate users on your Linux box using the winbind services which come with SAMBA 2.2.2.

There is also some Solaris specific information in +docs/textdocs/Solaris-Winbind-HOWTO.txt. +Future revisions of this document will incorporate that +information.

11.5.1. Introduction

11.5.2. Requirements

11.5.3. Testing Things Out

11.5.3.1. Configure and compile SAMBA

11.5.3.2. Configure nsswitch.conf

11.5.3.3. Configure smb.conf

11.5.3.4. Join the SAMBA server to the PDC domain

11.5.3.5. Start up the winbindd daemon and test it!

11.5.3.6. Fix the /etc/rc.d/init.d/smb

11.5.3.7. Configure Winbind and PAM

11.6. Limitations

11.7. Conclusion

12.1. FAQs

12.1.1. How can I configure OS/2 Warp Connect or OS/2 Warp 4 as a client for Samba?

12.1.2. How can I configure OS/2 Warp 3 (not Connect), OS/2 1.2, 1.3 or 2.x for Samba?

12.1.3. Are there any other issues when OS/2 (any version) is used as a client?

12.1.4. How do I get printer driver download working for OS/2 clients?

13.1. Introduction

13.2. CVS Access to samba.org

13.2.1. Access via CVSweb

13.2.2. Access via cvs

Index

  • abort shutdown script

  • add machine script

  • lock spin count

  • lock spin time

  • shutdown script

  • winbind use default domain

  • inherit acls

  • EXPLANATION OF EACH PARAMETER

    abort shutdown script (G)

    This parameter only exists in the HEAD cvs branch - This a full path name to a script called by - smbd(8) that - should stop a shutdown procedure issued by the shutdown script.

    This command will be run as user.

    Default: None.

    Example: abort shutdown script = /sbin/shutdown -c

    add printer command (G)
    • add machine script (G)

    This is the full pathname to a script that will - be run by smbd(8) when a machine is added - to it's domain using the administrator username and password method.

    This option is only required when using sam back-ends tied to the - Unix uid method of RID calculation such as smbpasswd. This option is only - available in Samba 3.0.

    Default: add machine script = <empty string> -

    Example: add machine script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %u -

    add user script (G)
    inherit acls (S)

    This parameter can be used to ensure + that if default acls exist on parent directories, + they are always honored when creating a subdirectory. + The default behavior is to use the mode specified + when creating the directory. Enabling this option + sets the mode to 0777, thus guaranteeing that + default directory acls are propagated. +

    Default: inherit acls = no +

    inherit permissions (S)
    lock spin count (G)

    This parameter controls the number of times + that smbd should attempt to gain a byte range lock on the + behalf of a client request. Experiments have shown that + Windows 2k servers do not reply with a failure if the lock + could not be immediately granted, but try a few more times + in case the lock could later be aquired. This behavior + is used to support PC database formats such as MS Access + and FoxPro. +

    Default: lock spin count = 2 +

    lock spin time (G)

    The time in microseconds that smbd should + pause before attempting to gain a failed lock. See + lock spin + count for more details. +

    Default: lock spin time = 10 +

    locking (S)

    Currently eight styles of printer status information - are supported; BSD, AIX, LPRNG, PLP, SYSV, HPUX, QNX and SOFTQ. +>Currently nine styles of printer status information + are supported; BSD, AIX, LPRNG, PLP, SYSV, HPUX, QNX, CUPS, and SOFTQ. This covers most UNIX systems. You control which type is expected using the $PATH may not be available to the server.

    may not be available to the server. When compiled with + the CUPS libraries, no lpq command is + needed because smbd will make a library call to obtain the + print queue listing.

    See also the

    The print command is simply a text string. It will be used - verbatim, with two exceptions: All occurrences of %s - and %f will be replaced by the - appropriate spool file name, and all occurrences of %p - will be replaced by the appropriate printer name. The - spool file name is generated automatically by the server. The - %J macro can be used to access the job + verbatim after macro substitutions have been made:

    s, %p - the path to the spool + file name

    %p - the appropriate printer + name

    %J - the job name as transmitted by the client.

    %c - The number of printed pages + of the spooled job (if known).

    %z - the size of the spooled + print job (in bytes)

    The print command MUST contain at least @@ -14365,6 +14375,25 @@ CLASS="COMMAND" >print command = lp -d%p -s %s; rm %s

    For printing = CUPS : If SAMBA is compiled against + libcups, then printcap = cups + uses the CUPS API to + submit jobs, etc. Otherwise it maps to the System V + commands with the -oraw option for printing, i.e. it + uses lp -c -d%p -oraw; rm %s. + With printing = cups, + and if SAMBA is compiled against libcups, any manually + set print command will be ignored.

    Example: print command = /usr/local/samba/bin/myprintscript @@ -14459,7 +14488,18 @@ HREF="#AEN79" CLASS="COMMAND" >printcap name = cups .

    . This should be supplemented by an addtional setting + printing = cups in the [global] + section. printcap name = cups will use the + "dummy" printcap created by CUPS, as specified in your CUPS + configuration file. +

    On System V systems that use

    shutdown script (G)

    This parameter only exists in the HEAD cvs branch - This a full path name to a script called by - smbd(8) that - should start a shutdown procedure.

    This command will be run as the user connected to the - server.

    %m %t %r %f parameters are expanded

    %m will be substituted with the - shutdown message sent to the server.

    %t will be substituted with the - number of seconds to wait before effectively starting the - shutdown procedure.

    %r will be substituted with the - switch -r. It means reboot after shutdown - for NT. -

    %f will be substituted with the - switch -f. It means force the shutdown - even if applications do not respond for NT.

    Default: None.

    Example: abort shutdown script = /usr/local/samba/sbin/shutdown %m %t %r %f

    Shutdown script example: - 
    		#!/bin/bash
-		
-		$time=0
-		let "time/60"
-		let "time++"
-
-		/sbin/shutdown $3 $4 +$time $1 &
-
    - Shutdown does not return so we need to launch it in background. -

    See also abort shutdown script.

    smb passwd file (G)
    winbind cache timewinbind cache time (G)

    This parameter specifies the number of seconds the @@ -18892,8 +18823,7 @@ CLASS="COMMAND" >winbind enum - userswinbind enum users (G)

    On large installations using @@ -18944,8 +18874,7 @@ CLASS="COMMAND" >winbind enum - groupswinbind enum groups (G)

    On large installations using @@ -18995,7 +18924,7 @@ CLASS="COMMAND" >winbind gidwinbind gid (G)

    The winbind gid parameter specifies the range of group @@ -19022,7 +18951,7 @@ CLASS="COMMAND" >winbind separatorwinbind separator (G)

    This parameter allows an admin to define the character @@ -19052,21 +18981,21 @@ CLASS="FILENAME" with group membership at least on glibc systems, as the character + is used as a special character for NIS in /etc/group.

    Example: Default: winbind separator = \\winbind separator = '\'

    Example: winbind separator = /winbind separator = +

    winbind uid
    winbind uid (G)

    The winbind gid parameter specifies the range of group @@ -19091,6 +19020,26 @@ CLASS="COMMAND" >

    winbind use default domain (G)

    This option controls whether or not smbd + should lookup 'username' as 'DOMAIN\username' when winbindd is + running on a system. This is most useful when used in conjunction + with pam_winbind.so to prevent a Windows user from having to enter + commands like "ssh 'DOMAIN\username@hostname'". This option is disabled + by default, thus requiring that the DOMAIN\username format be used.

    Default: winbind use default domain = no +

    wins hook (G)

    WARNINGS

    VERSION

    SEE ALSO

    AUTHOR