Samba e OpenLDAP: creare un controller di dominio con Debian Lenny: differenze tra le versioni

Riga 623: Riga 623:
       netbios name = SERVER
       netbios name = SERVER
       realm = dominio.local
       realm = dominio.local
       server string = DOMINOP PDC Server - Samba %v
       server string = server - dominio PDC server - Samba %v
       case sensitive = No
       case sensitive = No
        
       username map = /etc/samba/usermap
 
   ### Imposto il server come controller di dominio ###
   ### Imposto il server come controller di dominio ###
       os level = 65
       os level = 255
       preferred master = yes
       preferred master = yes
       local master = yes
       local master = yes
       domain master = yes
       domain master = yes
       domain logons = yes
       domain logons = yes
      admin users = Administrator root @"Domain Admins"


   ### Opzioni di connessione e sicurezza. Configurazione Wins ###
   ### Opzioni di connessione e sicurezza. Configurazione Wins ###
Riga 639: Riga 641:
       encrypt passwords = yes
       encrypt passwords = yes
       null passwords = no
       null passwords = no
       hosts allow = 127.0.0.1 10.0.0.0/255.0.0.0
       hosts allow = 127.0.0.1 10.0.0.0/255.255.255.0
       wins support = yes
       wins support = yes
       idmap uid = 10000-90000
       idmap uid = 10000-90000
Riga 648: Riga 650:
       time server = yes
       time server = yes
       socket options = TCP_NODELAY IPTOS_LOWDELAY SO_SNDBUF=8192 SO_RCVBUF=8192
       socket options = TCP_NODELAY IPTOS_LOWDELAY SO_SNDBUF=8192 SO_RCVBUF=8192
      keepalive = 20
      preserve case = yes
      short preserve case = yes


   ### Configuro Winbind
   ### Configuro Winbind
Riga 655: Riga 660:
       winbind enum groups = yes
       winbind enum groups = yes
       winbind separator = +
       winbind separator = +
       password server = server_name
       password server = 10.0.0.11
       winbind use default domain = Yes
       winbind use default domain = Yes
       encrypt passwords = yes
       encrypt passwords = yes
Riga 666: Riga 671:
       log level = 2
       log level = 2
       max log size = 50
       max log size = 50
     
 
   ### Impostazione charset corretto ###
   ### Impostazione charset corretto ###
      hide unreadable = yes
        hide unreadable = yes
       hide dot files = yes
       hide dot files = yes
       unix charset = ISO8859-1
       unix charset = ISO8859-1
Riga 686: Riga 691:
       enable privileges = yes
       enable privileges = yes
       ldap delete dn = Yes
       ldap delete dn = Yes
      ldap ssl = no
        ldap ssl = no


   ### Permetto il cambio password da Windows
   ### Permetto il cambio password da Windows
Riga 697: Riga 702:
       logon drive = H:
       logon drive = H:
       logon path = \\%L\profiles\%U
       logon path = \\%L\profiles\%U
       logon script = %U.bat OR netlogon.bat
       logon script = logon.bat


   ### Script LDAP per gestione utenti e gruppi ###
   ### Script LDAP per gestione utenti e gruppi ###
       passwd program = /usr/sbin/smbldap-passwd %u
       passwd program = /usr/sbin/smbldap-passwd %u
       passwd chat = *New*password* %n\n *Retype*new*password* %n\n *all*authentication*token*updated*
       passwd chat = *New*password* %n\n *Retype*new*password* %n\n *all*authen$
       add user script = /usr/sbin/smbldap-useradd -m "%u"
       add user script = /usr/sbin/smbldap-useradd -m "%u"
       ldap delete dn = Yes
       ldap delete dn = Yes
Riga 711: Riga 716:
       delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
       delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
       set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"
       set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"
  ### Comando per loggare login e logoff (Legge amministratore di sistema)
      root preexec = /etc/samba/log_access_login.bash "%L" "%U" "%G" "%H" "%u"$
      root postexec = /etc/samba/log_access_login.bash "%L" "%U" "%G" "%H" "%u$


   ### Sistema di stampa ###
   ### Sistema di stampa ###
Riga 723: Riga 732:


   ### Condivisioni ###
   ### Condivisioni ###
 
 
### Percorso degli script di logon
### Percorso degli script di logon
[netlogon]
[netlogon]
Riga 729: Riga 738:
       path = /dominio/netlogon
       path = /dominio/netlogon
       guest ok = no
       guest ok = no
       writable = no
       writable = yes
       browseable = no
       browseable = no
       share modes = no
       share modes = no
      admin users = @"Domain Admins"


### Percorso per i roaming profiles
### Percorso per i roaming profiles
Riga 774: Riga 784:
       guest ok = no
       guest ok = no
       inherit permissions = yes
       inherit permissions = yes
      admin users = %u
      write list = %u
      read list = %u
      create mask = 0700
      directory mask = 0700


### Directory condivisa
### Directory Pubblica
[pubblica]
[pubblica]
       path = /dominio/pubblica
       path = /dominio/pubblica
      comment = Directory Pubblica
       read only = No
       read only = No
       create mask = 0660
       create mask = 0660
Riga 787: Riga 803:
       map acl inherit = yes
       map acl inherit = yes
       inherit permissions = yes
       inherit permissions = yes
       map archive = no  
       map archive = no


# Per condividere l'unità CD del server
# Per condividere l'unità CD del server