SAMBA et la base de registre WINDOWS XP

  • Auteur de la discussion moi95800
  • Date de début

moi95800

Habitué
Bonjour,


Je souhaiterai mettre en place des profiles Itinérants avec samba pouvez vous m'aider?

voici mon smb.conf :


[fixed]
#======================= Global Settings =====================================
[global]

# 1. Server Naming Options:
# workgroup = NT-Domain-Name or Workgroup-Name
workgroup = se.aura.fr

# netbios name is the name you will see in "Network Neighbourhood",
# but defaults to your hostname
netbios name = serveur_samba

# server string is the equivalent of the NT Description field
server string = Samba Server %v

# Message command is run by samba when a "popup" message is sent to it.
# The example below is for use with LinPopUp:
; message command = /usr/bin/linpopup "%f" "%m" %s; rm %s

# 2. Printing Options:
# CHANGES TO ENABLE PRINTING ON ALL CUPS PRINTERS IN THE NETWORK
# (as cups is now used in linux-mandrake 7.2 by default)
# if you want to automatically load your printer list rather
# than setting them up individually then you'll need this
printcap name = cups
load printers = yes

# printcap cache time, so samba will automatically load new cups printers
printcap cache time = 60

# It should not be necessary to spell out the print system type unless
# yours is non-standard. Currently supported print systems include:
# bsd, sysv, plp, lprng, aix, hpux, qnx, cups
printing = cups

# Samba 2.2 supports the Windows NT-style point-and-print feature. To
# use this, you need to be able to upload print drivers to the samba
# server. The printer admins (or root) may install drivers onto samba.
# Note that this feature uses the print$ share, so you will need to
# enable it below.
# Printer admins are now defined by granting the SePrintOperatorPrivilege, ie:
# run: net rpc rights grant 'DOMAIN\Printer Operators' SePrintOperatorPrivilege

# 3. Logging Options:
# this tells Samba to use a separate log file for each machine
# that connects
log file = /var/log/samba/%m.log

# Put a capping on the size of the log files (in Kb).
max log size = 50

# Set the log (verbosity) level (0 <= log level <= 10)
# log level = 3

# 4. Security and Domain Membership Options:
# This option is important for security. It allows you to restrict
# connections to machines which are on your local network. The
# following example restricts access to two C class networks and
# the "loopback" interface. For more examples of the syntax see
# the smb.conf man page. Do not enable this if (tcp/ip) name resolution does
# not work for all the hosts in your network.
hosts allow = 10.10.1. 192.168.2. 127.

# Uncomment this if you want a guest account, you must add this to /etc/passwd
# otherwise the user "nobody" is used
# guest account = pcguest
# Allow users to map to guest:
map to guest = bad user

# Security mode. Most people will want user level security. See
# security_level.txt for details.
security = user
# Use password server option only with security = server or security = domain
# When using security = domain, you should use password server = *
# password server = <NT-Server-Name>
# password server = *

# Password Level allows matching of _n_ characters of the password for
# all combinations of upper and lower case.
# password level = 8
# username level = 8

; unix password sync = Yes
# You either need to setup a passwd program and passwd chat, or
# enable pam password change
; pam password change = yes
# passwd program = /usr/bin/passwd '%u'
; passwd chat = *New*UNIX*password* %n\n *Re*ype*new*UNIX*password* %n\n \
;*passwd:*all*authentication*tokens*updated*successfully*

# Unix users can map to different SMB User names
# username map = /etc/samba/smbusers

# Using the following line enables you to customise your configuration
# on a per machine basis. The %m gets replaced with the netbios name
# of the machine that is connecting
# include = /etc/samba/smb.conf.%m

# winbind use default domain allows you to have winbind return usernames
# in the form user instead of DOMAIN+user for the domain listed in the
# workgroup parameter.
winbind use default domain = yes
#
# template homedir determines the home directory for winbind users, with
# %D expanding to their domain name and %U expanding to their username:
# template homedir = /home/%D/%U

local master = yes

os level = 40

domain master = yes

domain logons = yes

#passwd program = /usr/sbin/smbldap-passwd ?u %u
ldap passwd sync = Yes
passdb backend = ldapsam:ldap://127.0.0.1/

logon script = logon.bat

# Where to store roaming profiles for WinNT and Win2k
# %L substitutes for this servers netbios name, %u is username
# You must uncomment the [Profiles] share below
logon path = \\%L\Profiles\%u

# Where to store roaming profiles for Win9x. Be careful with this as it also
# impacts where Win2k finds it's /HOME share
logon home = \\%L\%u\.profile



add user script = /usr/sbin/smbldap-useradd -m '%u'
delete user script = /usr/sbin/smbldap-userdel '%u'
add user to group script = /usr/sbin/smbldap-groupmod -m '%u' '%g'
delete user from group script = /usr/sbin/smbldap-groupmod -x '%u' '%g'
set primary group script = /usr/sbin/smbldap-usermod -g '%g' '%u'
add group script = /usr/sbin/smbldap-groupadd '%g' && /usr/sbin/smbldap-groupshow %g|awk '/^gidNumber:/ {print $2}'
delete group script = /usr/sbin/smbldap-groupdel '%g'

ldap delete dn = Yes

add machine script = /usr/sbin/smbldap-useradd -w -d /dev/null -c 'Machine Account' -s /bin/false '%u'

ldap admin dn = cn=admin,dc=aura,dc=ldap
ldap suffix = dc=aura,dc=ldap
ldap machine suffix = ou=Hosts
ldap user suffix = ou=People
ldap group suffix = ou=Group


wins proxy = yes

dns proxy = no

preserve case = yes
short preserve case = yes
default case = lower
case sensitive = no

#============================ Share Definitions ==============================
[homes]
comment = Home Directories
browseable = no
writable = yes



[netlogon]
path = /srv/samba/netlogon
# guest ok = yes
read only = yes
write list = administrateur

[public]
comment = Repertoire public sur serveur
path = /srv/samba/public
writable = yes
guest ok = yes

[private]
comment = Repertoire private du serveur
path = /srv/samba/private
browseable = yes
writable = yes
valid users = @group_users
guest ok = no
[printers]
comment = All Printers
path = /var/spool/samba
browseable = no
# to allow user 'guest account' to print.
guest ok = yes
writable = no
printable = yes
create mode = 0700
print command = lpr-cups -P %p -o raw %s -r # using client side printer drivers.
use client driver = yes

[print$]
path = /var/lib/samba/printers
browseable = yes
write list = @adm root
guest ok = yes
inherit permissions = yes
# Settings suitable for Winbind:
# write list = @"Domain Admins" root
# force group = +@"Domain Admins"

# A useful application of samba is to make a PDF-generation service
# To streamline this, install windows postscript drivers (preferably colour)
# on the samba server, so that clients can automatically install them.
# Note that this only works if 'printing' is *not* set to 'cups'

[pdf-gen]
path = /var/tmp
guest ok = No
printable = Yes
comment = PDF Generator (only valid users)
printing = bsd
#print command = /usr/share/samba/scripts/print-pdf file path win_path recipient IP &
print command = /usr/share/samba/scripts/print-pdf "%s" "%H" "//%L/%u" "%m" "%I" "%J" &
lpq command = /bin/true


# This one is useful for people to share files
;[tmp]
; comment = Temporary file space
; path = /tmp
; read only = no
; public = yes

# A publicly accessible directory, but read only, except for people in
# the "staff" group
;[public]
; comment = Public Stuff
; path = /home/samba/public
; public = yes
; writable = no
; write list = @staff
# Audited directory through experimental VFS audit.so module:
# Uncomment next line.
# vfs object = /usr/lib/samba/vfs/audit.so

# Other examples.
#
# A private printer, usable only by Fred. Spool data will be placed in Fred's
# home directory. Note that fred must have write access to the spool directory,
# wherever it is.
;[fredsprn]
; comment = Fred's Printer
; valid users = fred
; path = /homes/fred
; printer = freds_printer
; public = no
; writable = no
; printable = yes

# A private directory, usable only by Fred. Note that Fred requires write
# access to the directory.
;[fredsdir]
; comment = Fred's Service
; path = /usr/somewhere/private
; valid users = fred
; public = no
; writable = yes
; printable = no

# a service which has a different directory for each machine that connects
# this allows you to tailor configurations to incoming machines. You could
# also use the %u option to tailor it by user name.
# The %m gets replaced with the machine name that is connecting.
;[pchome]
; comment = PC Directories
; path = /usr/pc/%m
; public = no
; writable = yes

;[myshare]
; comment = Mary's and Fred's stuff
; path = /usr/somewhere/shared
; valid users = mary fred
; public = no
; writable = yes
; printable = no
; create mask = 0765

[/fixed]

Voici mon logon.bat:

[fixed]

echo off

# Montage du homedir de l'utilisateur
net use z: \\serveur_samba\%USERNAME%

# Montage de des lecteurs reseaux dans le Poste de Travail
net use y: \\serveur_samba\public
net use x: \\serveur_samba\private
net time \\serveur_samba /set /yes
regedit /s \\serveur_samba\netlogon\logon.reg

[/fixed]

Lorsque je me connecte avec un client xp j'ai 2 message d'erreur:

1er mesage :

Windows ne peut pas trouver de copie serveur de votre profil itinérant et tente de vous ouvrir une session avec votre profil local. Les modification apportées au profils ne seront pas copiées sur le serveur lorsque vous fermerez votre session. les causes possibles de cette erreur incluent des problemes réseau ou des droits de sécurité insuffisants. si ce probleme persiste contactez votre admin réseau.

Détail - Nom de réseau introuvable


2eme message:

Windows ne peut pas trouver le profils local et tente de vous connecter avec un profil temporaire. les modifications effectué a ce profil seront perdues lorsque vous vous déconecterez.

Configuration: serveur samba+LDAP :Linux Mandriva 2008/
Clent : XP
Firefox 2.0.0.12
 

moi95800

Habitué
Bonjour,

J'ai mis en place un serveur samba + LDAP

j'ai édité mon fichier smb.conf comme suit :

logon script = %u.bat
logon script = %m.bat


Voici le fichier %m.bat :



regedit /s \\serveur_samba\netlogon\logon_m.reg



donc il appel le fichier logon_m.reg que voici :



REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\NetCache]
"Enabled"=dword:00000000
"NoConfigCache"=dword:00000001
"NoMakeAvailableOffline"=dword:00000001
"NoCacheViewer"=dword:00000001

[HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\NetCache]
"Enabled"=dword:00000000
"NoConfigCache"=dword:00000001
"NoMakeAvailableOffline"=dword:00000001
"NoCacheViewer"=dword:00000001




voici mon fichier %u.bat :



echo off


# Montage du homedir de l'utilisateur
net use z: \\serveur_samba\%USERNAME%

# Montage de des lecteurs reseaux dans le Poste de Travail
net use y: \\serveur_samba\public
net use x: \\serveur_samba\private

#Efface l'ecran
cls

# Synchronisation de l'horloge du client avec le serveur
echo.
echo Mise a l'heure du poste client
net time \\serveur_samba /set /yes

regedit /s \\serveur_samba\netlogon\logon_u.reg



Donc il appel le fichier logon_u.reg que voici :



REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders]
"Personal"="z:\\"



%m.bat a pour objectif de créer les clés inexistante et de leur attribuer des valeurs pour permettre de désactiver la synchronisation des fichier hors connexion.

%u.bat a pour objectif de monté tout les lecteurs réseau et de rediriger le dossier Mesdocument vers un lecteur réseau.

Voici mon problème :

Le lecteur Z: ne se monte pas.
La synchronisation n'est pas déactiver car les clés ne sont pas créé dans la base de registre.

Quelqu'un peut m'aider ?

Merci d'avance !

Configuration: Linux Mandriva
Firefox 2.0.0.12
 
M

Membre supprimé 1

Invité
Salut, il se trouve que j'ai le meme problème, doncje voulais savoir si tu avais réussi ou pas? Merci d'avance..
 
Vous devez vous inscrire ou vous connecter pour répondre ici.
Derniers messages publiés
Statistiques globales
Discussions
730 098
Messages
6 717 065
Membres
1 586 286
Dernier membre
petitangebleu1977
Partager cette page
Haut