Samba BDC研究

Samba BDC研究

各位朋友:
      希望和大家一起討論Samba PDC/BDC的問題.
      最近參考Fandy前輩的關於samba+ldap的文章,見加精部分,在此謝過,多謝,多謝! 測試了SambaPDC/BDC的應用,
希望能夠用於實踐當中,發揮一些效能!
      環境基本實現得差不多了,關於smb.conf的配置,PDC與BDC的區別我只設置PDC(domain master = yes),BDC(domain master = no),看似工作正常了,但是測試的時候,停掉PDC,則客戶端不能通過BDC加入域,而必須手工將domain master = no 的值改為yes才可,不知大家有沒有遇到過類似的問題?

smb.conf配置

在此附上smb.conf的配置內容:
############################## Global parameters#################

        workgroup = domain
        netbios name = slave
        server string = Samba Server %v
        log file = /var/log/samba/log.%m
        security = user
        encrypt passwords = Yes
        obey pam restrictions = No
        ldap passwd sync = Yes
        log level = 3
        syslog = 0
        max log size = 100000
        time server = Yes
        socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
        mangling method = hash2
        Dos charset = UTF-8
        Unix charset = UTF-8
        #logon path =
        #logon home =
        logon script = %U.bat
        logon drive = X:
        domain logons = Yes
        os level = 65
        preferred master = Yes
        domain master = no
        passdb backend = ldapsam:"ldap://slave.domain.com ldap://master.domain.com"
        ldap admin dn = cn=admin,dc=domain,dc=com
        ldap suffix = dc=domain,dc=com
        ldap group suffix = ou=Groups
        ldap user suffix = ou=Users
        ldap machine suffix = ou=Computers
        ldap ssl = off
        ldap delete dn = Yes
        idmap backend = ldap:"ldap://slave.domain.com ldap://master.domain.com"
        add user script = /usr/sbin/smbldap-useradd -m "%u"
        add machine script = /usr/sbin/smbldap-useradd -t 0 -w "%u"
        add group script = /usr/sbin/smbldap-groupadd -p "%g"
        add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
        delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
        set primary group script = /usr/sbin/smbldap-usermod -g '%g' '%u'

############################## Homes parameters ################

        comment = repertoire de %U, %u
        browseable = no
        writeable = yes
        read only = no
        force create mode = 0700
        create mode = 0700
        force directory mode = 0700
        directory mode = 700

############################# Netlogone parameters ###############


        path = /home/netlogon/
        browseable = No
        read only = yes

############################# Public parameters ##################


        comment = Public Directory
        path = /home/public/
        browseable = No
        writable = yes
        guest ok = yes
        create mask = 0777

###############################

        path = /home/profiles
        read only = no
        create mask = 0600
        directory mask = 0700
        browseable = no
        guest ok = yes
        profile acls = yes
        csc policy = disable

我有一個問題,怎樣讓LINUX成為BDC
就是用LINUX做文件伺服器,讓域中的用戶使用,我曾經把LINUX加入域了,但是無法獲取域中的用戶,域中的用戶也無法訪問該伺服器???

samba pdc

我也正在研究這個問題，請你加我，我們討論一下　QQ：59392832　msn: yihuang420@hotmail.com

這個問題是否有進展了，我也正在考慮這方面的問題，萬一PDC哪一天伺服器DOWN了，不能工作了，那可不好玩~~

ddddd

ddddddddddddd

Tags: