HP CIFS Server Administrator Guide Version A.03.01.03 (5900-2006, October 2011)
Table Of Contents
- HP CIFS Server Administrator Guide Version A.03.01.03
- Contents
- About this document
- 1 Introduction to the HP CIFS Server
- 2 Installing and configuring HP CIFS Server
- HP CIFS Server requirements and limitations
- Step 1: Installing HP CIFS Server software
- Step 2: Running the configuration script
- Step 3: Modify the configuration
- Step 4: Starting HP CIFS Server
- Other Samba configuration issues
- 3 Managing HP-UX file access permissions from Windows NT/XP/2000/Vista/Windows 7
- Introduction
- UNIX file permissions and POSIX ACLs
- Using the Windows NT Explorer GUI to create ACLs
- Using the Windows Vista Explorer GUI to create ACLs
- POSIX ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- HP CIFS Server Directory ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- In conclusion
- 4 Windows style domains
- Introduction
- Configure HP CIFS Server as a PDC
- Configure HP CIFS Server as a BDC
- Domain member server
- Create the Machine Trust Accounts
- Configure domain users
- Join a Windows client to a Samba domain
- Roaming profiles
- Configuring user logon scripts
- Home drive mapping support
- Trust relationships
- 5 Windows 2003 and Windows 2008 domains
- 6 LDAP integration support
- Overview
- Network environments
- Summary of installing and configuring
- Installing and configuring your Directory Server
- Installing LDAP-UX Client Services on an HP CIFS Server
- Configuring the LDAP-UX Client Services
- Enabling Secure Sockets Layer (SSL)
- Extending the Samba subschema into your Directory Server
- Migrating your data to the Directory Server
- Configuring the HP CIFS Server
- Creating Samba users in directory
- Management tools
- 7 Winbind support
- 8 Kerberos support
- 9 HP CIFS deployment models
- Introduction
- Samba Domain Model
- Windows Domain Model
- Unified Domain Model
- 10 Securing HP CIFS Server
- 11 Configuring HA HP CIFS
- 12 HP-UX configuration for HP CIFS
- 13 Tool reference
- Glossary
- Index
If the POSIX user does not already exist in the LDAP directory server, you must first add the POSIX
user entry with the LDAP directory tools (such as ldapmodify). The ldapmodify tool can be
used to add, modify or delete a POSIX user in an LDAP directory server. For more information on
how to add POSIX user accounts to the LDAP Directory server, see the “Creating Samba users in
directory” (page 94) section in the chapter 6, “LDAP Integration Support”.
Syntax
smbpasswd [options] [username]
where options can be any of the following:
-L Runs in the local mode (must be first option).
-h Prints a list of options that the HP CIFS Server supports.
-s Uses stdin for password prompt. This option causes
smbpasswd to read passwords from standard input.
-c <config file> Specifies the path and file name of the smb.conf
configuration file when you want to use one other than the
default file.
-D <debug level > Specifies the debug level. The debug level is an integer from
0 to 10. If this parameter is not specified, the default value
is zero.
-r <remote machine name> Allows users to specify what machine they want to change
their password on. Without this parameter, smbpasswd
defaults to the local host. The remote machine name is the
NetBIOS name of the SMB/CIFS server to contact to attempt
the password change.
-U <username [%password]> Specifies the remote user name. This option may only be
used in conjunction with the -r option. When changing a
password on a remote machine, it allows the user to specify
the user name on that machine whose password will be
changed.
When you run smbpasswd as root, the following extra options are valid:
-a This option specifies that the [username] following should be added to the
configured passdb backend, with the new password typed in response to
the prompt (type <Enter> to keep the old password).
-d This option specifies that the account of the [username] following should
be disabled in the configured passdb backend.
-e This option specifies that the account of the [username] following should
be enabled if the account was previously disabled. If the account was not
disabled, this option has no effect.
-i This option tells smbpasswd that the account being changed is an
inter-domain trust account. Currently this is used when HP CIFS Server is
configured as a Primary Domain Controller. The account contains the info
about another trusted domain.
-n This option specifies that the username following should have their password
set to null (i.e. a blank password) in the configured passdb backend.
-m This option tells smbpasswd that the account being changed is a machine
account. Currently this is used when HP CIFS Server is configured as a
Primary Domain Controller.
-w < password> This option specifies the password to be used with the ldap admin dn.
The password is stored in the /var/opt/samba/private/secrets.tdb
file. If the password of ldap admin dn ever changes, the password will
HP CIFS management tools 159