Samba BDC研究
各位朋友:
希望和大家一起討論Samba PDC/BDC的問題.
最近參考Fandy前輩的關於samba+ldap的文章,見加精部分,在此謝過,多謝,多謝! 測試了SambaPDC/BDC的應用,
希望能夠用於實踐當中,發揮一些效能!
環境基本實現得差不多了,關於smb.conf的配置,PDC與BDC的區別我只設置PDC(domain master = yes),BDC(domain master = no),看似工作正常了,但是測試的時候,停掉PDC,則客戶端不能通過BDC加入域,而必須手工將domain master = no 的值改為yes才可,不知大家有沒有遇到過類似的問題?
《解決方案》
smb.conf配置
在此附上smb.conf的配置內容:
############################## Global parameters#################
workgroup = domain
netbios name = slave
server string = Samba Server %v
log file = /var/log/samba/log.%m
security = user
encrypt passwords = Yes
obey pam restrictions = No
ldap passwd sync = Yes
log level = 3
syslog = 0
max log size = 100000
time server = Yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
mangling method = hash2
Dos charset = UTF-8
Unix charset = UTF-8
#logon path =
#logon home =
logon script = %U.bat
logon drive = X:
domain logons = Yes
os level = 65
preferred master = Yes
domain master = no
passdb backend = ldapsam:"ldap://slave.domain.com ldap://master.domain.com"
ldap admin dn = cn=admin,dc=domain,dc=com
ldap suffix = dc=domain,dc=com
ldap group suffix = ou=Groups
ldap user suffix = ou=Users
ldap machine suffix = ou=Computers
ldap ssl = off
ldap delete dn = Yes
idmap backend = ldap:"ldap://slave.domain.com ldap://master.domain.com"
add user script = /usr/sbin/smbldap-useradd -m "%u"
add machine script = /usr/sbin/smbldap-useradd -t 0 -w "%u"
add group script = /usr/sbin/smbldap-groupadd -p "%g"
add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
set primary group script = /usr/sbin/smbldap-usermod -g '%g' '%u'
############################## Homes parameters ################
comment = repertoire de %U, %u
browseable = no
writeable = yes
read only = no
force create mode = 0700
create mode = 0700
force directory mode = 0700
directory mode = 700
############################# Netlogone parameters ###############
path = /home/netlogon/
browseable = No
read only = yes
############################# Public parameters ##################
comment = Public Directory
path = /home/public/
browseable = No
writable = yes
guest ok = yes
create mask = 0777
###############################
path = /home/profiles
read only = no
create mask = 0600
directory mask = 0700
browseable = no
guest ok = yes
profile acls = yes
csc policy = disable
《解決方案》
我有一個問題,怎樣讓LINUX成為BDC
就是用LINUX做文件伺服器,讓域中的用戶使用,我曾經把LINUX加入域了,但是無法獲取域中的用戶,域中的用戶也無法訪問該伺服器???
《解決方案》
samba pdc
我也正在研究這個問題,請你加我,我們討論一下 QQ:59392832 msn: yihuang420@hotmail.com
《解決方案》
這個問題是否有進展了,我也正在考慮這方面的問題,萬一PDC哪一天伺服器DOWN了,不能工作了,那可不好玩~~
《解決方案》
ddddd
ddddddddddddd