HP CIFS Server Administrator Guide Version A.03.01.03 (5900-2006, October 2011)
Table Of Contents
- HP CIFS Server Administrator Guide Version A.03.01.03
- Contents
- About this document
- 1 Introduction to the HP CIFS Server
- 2 Installing and configuring HP CIFS Server
- HP CIFS Server requirements and limitations
- Step 1: Installing HP CIFS Server software
- Step 2: Running the configuration script
- Step 3: Modify the configuration
- Step 4: Starting HP CIFS Server
- Other Samba configuration issues
- 3 Managing HP-UX file access permissions from Windows NT/XP/2000/Vista/Windows 7
- Introduction
- UNIX file permissions and POSIX ACLs
- Using the Windows NT Explorer GUI to create ACLs
- Using the Windows Vista Explorer GUI to create ACLs
- POSIX ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- HP CIFS Server Directory ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- In conclusion
- 4 Windows style domains
- Introduction
- Configure HP CIFS Server as a PDC
- Configure HP CIFS Server as a BDC
- Domain member server
- Create the Machine Trust Accounts
- Configure domain users
- Join a Windows client to a Samba domain
- Roaming profiles
- Configuring user logon scripts
- Home drive mapping support
- Trust relationships
- 5 Windows 2003 and Windows 2008 domains
- 6 LDAP integration support
- Overview
- Network environments
- Summary of installing and configuring
- Installing and configuring your Directory Server
- Installing LDAP-UX Client Services on an HP CIFS Server
- Configuring the LDAP-UX Client Services
- Enabling Secure Sockets Layer (SSL)
- Extending the Samba subschema into your Directory Server
- Migrating your data to the Directory Server
- Configuring the HP CIFS Server
- Creating Samba users in directory
- Management tools
- 7 Winbind support
- 8 Kerberos support
- 9 HP CIFS deployment models
- Introduction
- Samba Domain Model
- Windows Domain Model
- Unified Domain Model
- 10 Securing HP CIFS Server
- 11 Configuring HA HP CIFS
- 12 HP-UX configuration for HP CIFS
- 13 Tool reference
- Glossary
- Index
Pdbedit
You can use the pdbedit tool to manage the Samba user accounts stored in the SAM database
(database of Samba users). You must be logged in as the root user to run this tool.
The pdbedit tool can be used to perform the following operations:
• Add, remove or modify user accounts.
• List user accounts.
• Migrate user accounts.
• Migrate group accounts.
• Manage account policies.
• Manage domain access policy settings.
For detailed information on the pdbedit command, refer to the pdbedit man page, SWAT or
The Official Samba HOWTO and Reference Guide.
The pdbedit tool performs its operations on the data store specified by the passdb backend
parameter in the smb.conf file. If an LDAP directory is to be used, then the this parameter is set
to ldapsam:ldap://<LDAP server name>. If the Samba user account database file,
smbpasswd, is used, this parameter is set to smbpasswd.
If you manage user accounts in an LDAP directory server, an existing POSIX user must already
exists in the LDAP directory before you run the pdbedit -a command to add the corresponding
Samba user and its sambaSamAccount information required for HP CIFS Server user authentication.
If the POSIX user does not already exist in the LDAP directory server, you must first add the POSIX
user entry with the LDAP directory tools (such as ldapmodify). You can use the ldapmodify
tool to add, modify or delete a POSIX user in an LDAP directory server. For more information on
how to add POSIX user accounts to the LDAP Directory server, see the “Creating Samba users in
directory” (page 94) section in the Chapter 6, “LDAP Integration Support”.
Syntax
pdbedit [options]
where options can be any of the following:
-L, –list Lists all the user accounts in the users database. This option
displays a list of uid/user pairs information by the “:”
character.
-v, –verbose Enables the verbose listing format. It causes pdbedit to list
the users in the database, display the account fields in a
descriptive format.
-w, –smbpasswd-style This option enables pdbedit to list the users in the
database, display the account fields in the smbpasswd style
file format.
-u, –user=username Specifies the user name to be used for the operation
requested (listing, adding, modifying and removing). It is
required for add, remove and modify operations and is
optional for list operations.
-N, –account-desc=ARG Specifies a machine account description to be set.
-f, –fullname=ARG Specifies the user's full name. This option can be used while
adding or modifying a user account.
-h, –homedir=ARG Sets the user's home directory. This option can be used while
adding or modifying a user account.
HP CIFS management tools 161