Jump to content United States-English
HP.com Home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
More options
HP.com home
 HP CIFS Server 3.0g Administrator's Guide version A.02.03.01: HP-UX 11i v1, v2 and v3 > Chapter 4 NT Style Domains

Join a Windows Client to a Samba Domain
» 

Technical documentation

Complete book in PDF
» Feedback
Content starts here

 » Table of Contents

 » Glossary

 » Index

spacerspacerspacer
spacer
spacer
  		 
 

  1. Verify the following parameters in the smb.conf file:

    Set the security parameter to "user."

    Set the workgroup parameter to the name of the domain.

    Set the encrypt passwords parameter to "yes."

    [global]

    security = user

    workgroup = SAMBADOM #SAMBA Domain name

    domain logon = yes

    encrypt passwords = yes

  2. Create the UNIX or POSIX account for a Windows Client:

    • Use the following command to create the POSIX account for a Windows client in the /etc/passwd file if the passdb backend option is set to smbpasswd:

      $ useradd -c NT_workstation -d /home/temp -s /bin/false client1$

      As an example, the resulting entry in the /etc/passwd file for a client machine named "client1" would be:

      client1$:*:803:808:NT_Workstation: /home/temp:/bin/false

      where 803 is a uid and 808 is the group id of a group called "machines." A uid or group id can be any unique number. You may find that uid values 0 through 100 are considered special, and/or server specific. This may, or may not apply to your system.

      The machine account is the machine's name with a dollar sign character ("$") appended to it. The home directory can be set to /home/temp. The shell field in the /etc/passwd file is not used and can be set to /bin/false.

    • Use the following command to create the posixAccount entry for a Windows client in the LDAP directory if the passdb backend option is set to ldapsam or ldapsam_compat:

      $ /opt/ldapux/bin/ldapmodify –a –D “cn=Directory Manager” –w dmpasswd –h ldaphostA –f new.ldif $

      Where LDIF update statements specified in the new.ldif file are added to the LDAP directory server, ldaphostA. The following is an example of LDIF update statements in the new.ldif file:

      dn: uid=client1$ ou=People,dc=hp,dc=com
objectclass: top
objectclass: account
objectclass: posixAccount
homeDirectory: /home/temp
loginShell: /bin/false

      As an example, the resulting entry in the LDAP directory server for a client machine named "client1" would be:

      dn: uid=client1, ou=people,dc=hp,dc=com
objectClass: top
objectClass: posixAccount 
cn: client1$
sn: client1$
uid: client1$
uidNumber: 1002
gidNumber: 202
homeDirectory: /home/client1$
loginShell: /bin/false
userPassword: {crypt}x
pwdLastSet: 1076466300
logonTime: 0
logofftime: 2147483650
kickoffTime: 2147483650
pwdCanChange: 0
pwdMustChange: 2147483650
rid: 1206
primaryGroupID: 1041
acctFlags: [W          ]
displayName: client1$

  3. Run the smbpasswd program on the Samba PDC server to create the Windows account:

    • Use the following command to add the Windows account for a Windows client to the /var/opt/samba/private/smbpasswd file if the passdb backend option is set tosmbpasswd:

      $ smbpasswd -a -m client1$

      An example of the associated machine entry in the /etc/opt/samba/private/smbpasswd file for a client machine named "client1" would be:

      client1$:*803:808:ED816822D0393DAAD3B435B51404DD:321

      ABEEFE10EC431B9BBFF1A1C0C047:[W ]:LCT-0000000:

    • Use the following command to add the sambaSamAccount entry for a Windows client to the LDAP directory server if the passdb backend option is set to ldapsam or ldapsam_compat:

      $ smbpasswd -a -m client1

      An example of the associated machine entry in the LDAP directory server for a client machine named "client1" would be:

      objectClass: posixAccount
objectClass: sambaSamAccount
cn: client1$
uid: client1$
uidNumber: 1002
gidNumber: 202
homeDirectory: /home/temp
loginShell: /bin/false
gecos: Samba_Server
description: Samba_Server
userPassword: {crypt}x
pwdLastSet: 1076466300
logonTime: 0
logofftime: 2147483650
kickoffTime: 2147483650
pwdCanChange: 0
pwdMustChange: 2147483650
rid: 1206
primaryGroupID: 1041
lmPassword: E0AFF63989B8FA6576549A685C6ADFC1
ntPassword: E0AFF63989B8FA6576549A685C6ADFC1
acctFlags: [W          ]
displayName: client1$

  4. Logon to Windows NT as a local admin user.

  5. From the Windows NT desktop, click 'Start', 'Settings' and 'Control Panel'. When the Control Panel window opens, double-click on the 'Network' icon. When the 'Network' window opens, click the 'Identification' tab. Refer to Figure 4-1 below.

  6. Enter the Samba domain name in the 'Domain' field, and click on the 'Change' button. Refer to Figure 4-3 below.

Figure 4-1 Entering A Samba PDC Domain Name

Entering A Samba PDC Domain Name


Configure Domain Users
  		 


Roaming Profiles  
Printable version
Privacy statement Using this site means you accept its terms Feedback to webmaster
© 2007 Hewlett-Packard Development Company, L.P.