Chinaunix

标题: Samba BDC研究 [打印本页]

作者: chasfer 时间: 2007-10-24 16:45
标题: Samba BDC研究
各位朋友:
   希望和大家一起讨论Samba PDC/BDC的问题.
   最近参考Fandy前辈的关于samba+ldap的文章,见加精部分,在此谢过,多谢,多谢! 测试了SambaPDC/BDC的应用,
希望能够用于实践当中,发挥一些效能!
   环境基本实现得差不多了,关于smb.conf的配置,PDC与BDC的区别我只设置PDC(domain master = yes),BDC(domain master = no),看似工作正常了,但是测试的时候,停掉PDC,则客户端不能通过BDC加入域,而必须手工将domain master = no 的值改为yes才可,不知大家有没有遇到过类似的问题?

作者: chasfer 时间: 2007-10-24 16:49
标题: smb.conf配置
在此附上smb.conf的配置内容:
############################## Global parameters#################
[global]
      workgroup = domain
      netbios name = slave
      server string = Samba Server %v
      log file = /var/log/samba/log.%m
      security = user
      encrypt passwords = Yes
      obey pam restrictions = No
      ldap passwd sync = Yes
      log level = 3
      syslog = 0
      max log size = 100000
      time server = Yes
      socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
      mangling method = hash2
      Dos charset = UTF-8
      Unix charset = UTF-8
      #logon path =
      #logon home =
      logon script = %U.bat
      logon drive = X:
      domain logons = Yes
      os level = 65
      preferred master = Yes
      domain master = no
      passdb backend = ldapsam:"ldap://slave.domain.com ldap://master.domain.com"
      ldap admin dn = cn=admin,dc=domain,dc=com
      ldap suffix = dc=domain,dc=com
      ldap group suffix = ou=Groups
      ldap user suffix = ou=Users
      ldap machine suffix = ou=Computers
      ldap ssl = off
      ldap delete dn = Yes
      idmap backend = ldap:"ldap://slave.domain.com ldap://master.domain.com"
      add user script = /usr/sbin/smbldap-useradd -m "%u"
      add machine script = /usr/sbin/smbldap-useradd -t 0 -w "%u"
      add group script = /usr/sbin/smbldap-groupadd -p "%g"
      add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
      delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
      set primary group script = /usr/sbin/smbldap-usermod -g '%g' '%u'

############################## Homes parameters ################
[homes]
      comment = repertoire de %U, %u
      browseable = no
      writeable = yes
      read only = no
      force create mode = 0700
      create mode = 0700
      force directory mode = 0700
      directory mode = 700

############################# Netlogone parameters ###############

[netlogon]
      path = /home/netlogon/
      browseable = No
      read only = yes

############################# Public parameters ##################

[public]
      comment = Public Directory
      path = /home/public/
      browseable = No
      writable = yes
      guest ok = yes
      create mask = 0777

###############################
[profiles]
      path = /home/profiles
      read only = no
      create mask = 0600
      directory mask = 0700
      browseable = no
      guest ok = yes
      profile acls = yes
      csc policy = disable

作者: net520view 时间: 2007-12-21 15:10
我有一个问题,怎样让LINUX成为BDC
就是用LINUX做文件服务器,让域中的用户使用,我曾经把LINUX加入域了,但是无法获取域中的用户,域中的用户也无法访问该服务器???

作者: ivan31 时间: 2007-12-22 10:33
标题: samba pdc
我也正在研究这个问题，请你加我，我们讨论一下　QQ：59392832　msn: yihuang420@hotmail.com

作者: liantianji 时间: 2008-01-02 13:32
这个问题是否有进展了，我也正在考虑这方面的问题，万一PDC哪一天服务器DOWN了，不能工作了，那可不好玩~~

作者: nethost 时间: 2008-01-04 02:28
标题: ddddd
ddddddddddddd

欢迎光临 Chinaunix (http://bbs.chinaunix.net/)