Manualshelf

HP CIFS Server 3.0k Administrator's Guide version A.02.04

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
61626364656667686970
Join an HP CIFS Server to an NT Domian, Windows 2000/2003 (as a pre-Windows
2000 computer), or Samba Domain
This section describes the procedures to join an HP CIFS Server to a Windows NT domain,
Windows 2000 and Windows 2003 (as a pre-Windows 2000 computer) or Samba domain as a
member server.
Step-by-step Procedure
1. Choose "Domain Member Server" when executing samba_setup. When prompted, you
will need to add your domain Member Server machine account to the PDC.
For Windows NT: Go to the Windows NT PDC and create a machine account for the HP
CIFS Member Server by performing the following steps:
a. Open the "start/programs/administrator/tools/server manager" tool.
b. Select the "computer/add to domain" icon and enter the host name of the HP CIFS
Server.
c. Choose the "Windows NT Workstation or Server" option when you are asked for the
computer type.
For Windows 2000: Go to the Windows 2000 PDC and create a machine account for the HP
CIFS Member Server by using the Active Directory Controller Wizard.
Check the "Allow Pre-Windows 2000 computers to use this account" box and
add the computer name
For Samba (including HP CIFS): Go to the Samba Server acting as a PDC and create a
machine account for the HP CIFS Member Server by following the steps provided in Chapter
4 section titled, "Create a Machine Trust Account.". samba_setup will then perform the
"net rpc join -U Administrator%password" command for you.
Create the Machine Trust Accounts
A Machine Trust Account for a Windows Client (Client=member server) on a HP CIFS Server
acting as a PDC is simply a user account entry created for a machine. It is denoted by the machine
name followed by "$".
For PDCs not using LDAP (default), machine accounts will have entries in both /etc/passwd (unix
user accounts) and /var/opt/samba/private/smbpasswd (Windows user accounts).
For PDCs using LDAP, machine accounts will have posixAccount and sambaSamAccount object
class entries in a directory server database.
The following steps are used to create a machine account for a Windows Client on a HP CIFS
Server acting as a Primary Domain Controller (PDC):
1. Create the UNIX or POSIX account for a Windows Client:
Use the following command to create the POSIX account for a Windows client in the
/etc/passwd file if LDAP is disabled:
$ useradd -c NT_workstation -d /home/temp -s /bin/false client1$
As an example, the resulting entry in the /etc/passwd file for a client machine named
"client1" would be:
client1$:*:801:800:NT_Workstation: /home/temp:/bin/false
where 801 is a uid and 800 is the group id of a group called "machines." A uid or group
id can be any unique number. You may find that uid values 0 through 100 are considered
special, and/or server specific. This may, or may not apply to your system.
66 Windows Style Domains