Samba BDC研究

chasfer

各位朋友:
      希望和大家一起讨论Samba PDC/BDC的问题.
      最近参考Fandy前辈的关于samba+ldap的文章,见加精部分,在此谢过,多谢,多谢! 测试了SambaPDC/BDC的应用,
希望能够用于实践当中,发挥一些效能!
      环境基本实现得差不多了,关于smb.conf的配置,PDC与BDC的区别我只设置PDC(domain master = yes),BDC(domain master = no),看似工作正常了,但是测试的时候,停掉PDC,则客户端不能通过BDC加入域,而必须手工将domain master = no 的值改为yes才可,不知大家有没有遇到过类似的问题?

chasfer

在此附上smb.conf的配置内容:
############################## Global parameters#################
[global]
        workgroup = domain
        netbios name = slave
        server string = Samba Server %v
        log file = /var/log/samba/log.%m
        security = user
        encrypt passwords = Yes
        obey pam restrictions = No
        ldap passwd sync = Yes
        log level = 3
        syslog = 0
        max log size = 100000
        time server = Yes
        socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
        mangling method = hash2
        Dos charset = UTF-8
        Unix charset = UTF-8
        #logon path =
        #logon home =
        logon script = %U.bat
        logon drive = X:
        domain logons = Yes
        os level = 65
        preferred master = Yes
        domain master = no
        passdb backend = ldapsam:"ldap://slave.domain.com ldap://master.domain.com"
        ldap admin dn = cn=admin,dc=domain,dc=com
        ldap suffix = dc=domain,dc=com
        ldap group suffix = ou=Groups
        ldap user suffix = ou=Users
        ldap machine suffix = ou=Computers
        ldap ssl = off
        ldap delete dn = Yes
        idmap backend = ldap:"ldap://slave.domain.com ldap://master.domain.com"
        add user script = /usr/sbin/smbldap-useradd -m "%u"
        add machine script = /usr/sbin/smbldap-useradd -t 0 -w "%u"
        add group script = /usr/sbin/smbldap-groupadd -p "%g"
        add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
        delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
        set primary group script = /usr/sbin/smbldap-usermod -g '%g' '%u'

############################## Homes parameters ################
[homes]
        comment = repertoire de %U, %u
        browseable = no
        writeable = yes
        read only = no
        force create mode = 0700
        create mode = 0700
        force directory mode = 0700
        directory mode = 700

############################# Netlogone parameters ###############

[netlogon]
        path = /home/netlogon/
        browseable = No
        read only = yes

############################# Public parameters ##################

[public]
        comment = Public Directory
        path = /home/public/
        browseable = No
        writable = yes
        guest ok = yes
        create mask = 0777

###############################
[profiles]
        path = /home/profiles
        read only = no
        create mask = 0600
        directory mask = 0700
        browseable = no
        guest ok = yes
        profile acls = yes
        csc policy = disable

net520view

我有一个问题,怎样让LINUX成为BDC
就是用LINUX做文件服务器,让域中的用户使用,我曾经把LINUX加入域了,但是无法获取域中的用户,域中的用户也无法访问该服务器???

ivan31

我也正在研究这个问题，请你加我，我们讨论一下　QQ：59392832　msn: yihuang420@hotmail.com

liantianji

这个问题是否有进展了，我也正在考虑这方面的问题，万一PDC哪一天服务器DOWN了，不能工作了，那可不好玩~~

nethost

ddddddddddddd