j’ai installé un serveur LDAP sous débian lénny et j’ai configuré un PDC samba pour la gestion des ressources partagés.
j’arrive à joindre le Domaine mais lors de l’ouverture session j’ai comme erreur :
Windows ne peut pas trouver de copie serveur du profil itinérant .
je suis complément bloqué.
SMBLDAP.CONF
sid=" S-1-5-21-1638105210-1786939172-2711810912"
sambaDomain = "Test"
slaveLDAP="127.0.0.1"
slavePort="389"
masterLDAP="127.0.0.1"
masterPort="389"
ldapTLS="0"
verify=“require”
A changer ==>
suffix="dc=test,dc=local"
usersdn="ou=Users,${suffix}"
computersdn="ou=Machines,${suffix}"
groupsdn="ou=Groups,${suffix}"
idmapdn="ou=Idmap,${suffix}"
sambaUnixIdPooldn="sambaDomainName=test.local,${suffix}"
scope=“sub"
hash_encrypt=“SSHA"
crypt_salt_format=”%s”
userLoginShell="/bin/bash"
userHome="/home/%U"
userHomeDirectoryMode=“700”
#Nom d’affichage - utiliser smbldap-useradd -c
userGecos="User"
defaultUserGid=“513"
defaultComputerGid=“515"
skeletonDir=”/etc/skel”
#Les mots de passe expirent dans 10ans
defaultMaxPasswordAge=“3650”
userSmbHome = "\toshiba%u"
userProfile = "\toshiba\profiles%u"
userHomeDrive=“H"
userScript=”%.bat"
mailDomain=“test.local”
with_smbpasswd=“0"
smbpasswd=”/usr/bin/smbpasswd"
with_slappasswd=“0"
slappasswd=”/usr/sbin/slappasswd"
-----------------SMB.CONF----------
[global]
workgroup = Test
netbios name = toshiba
server string = Samba-LDAP PDC Server
domain master = Yes
local master = Yes
domain logons = Yes
os level = 40
#passwd program = /usr/sbin/smbldap-passwd ?u %u
ldap passwd sync = Yes
passdb backend = ldapsam:ldap://127.0.0.1/
A changer === >
ldap admin dn = cn=admin,dc=test,dc=local
A changer === >
ldap suffix = dc=test,dc=local
ldap group suffix = ou=Groups
ldap user suffix = ou=Users
ldap machine suffix = ou=Machines
add user script = /usr/sbin/smbldap-useradd -m "%u"
ldap delete dn = Yes
delete user script = /usr/sbin/smbldap-userdel "%u"
add machine script = /usr/sbin/smbldap-useradd -w "%u"
add group script = /usr/sbin/smbldap-groupadd -p “%g”
#delete group script = /usr/sbin/smbldap-groupdel "%g"
add user to group script = /usr/sbin/smbldap-groupmod -m “%u” "%g"
delete user from group script = /usr/sbin/smbldap-groupmod -x “%u” "%g"
set primary group script = /usr/sbin/smbldap-usermod -g “%g” "%u"
logon path = \%L\profile%U
logon drive = P:
logon home = \%L%U
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
case sensitive = No
default case = lower
preserve case = yes
short preserve case = Yes
#character set = iso8859-1
#domain admin group = @admin
dns proxy = No
wins support = Yes
A changer si vous n’utilisez pas ce réseau === >
hosts allow = 10.0.0.251/255.255.255.0
winbind use default domain = Yes
nt acl support = Yes
msdfs root = Yes
hide files = /desktop.ini/ntuser.ini/NTUSER.*/
[netlogon]
path = /home/netlogon
writable = No
browseable = No
write list = Administrateur
[profile]
path = /home/export/profile
browseable = No
writeable = Yes
profile acls = yes
create mask = 0700
directory mask = 0700
[homes]
comment = Repertoire Personnel
browseable = No
writeable = Yes
[partage]
comment = Repertoire commun
browseable = Yes
writeable = Yes
public = No
path = /home/partage