HP CIFS Server Administrator Guide Version A.03.01.03 (5900-2006, October 2011)
Table Of Contents
- HP CIFS Server Administrator Guide Version A.03.01.03
- Contents
- About this document
- 1 Introduction to the HP CIFS Server
- 2 Installing and configuring HP CIFS Server
- HP CIFS Server requirements and limitations
- Step 1: Installing HP CIFS Server software
- Step 2: Running the configuration script
- Step 3: Modify the configuration
- Step 4: Starting HP CIFS Server
- Other Samba configuration issues
- 3 Managing HP-UX file access permissions from Windows NT/XP/2000/Vista/Windows 7
- Introduction
- UNIX file permissions and POSIX ACLs
- Using the Windows NT Explorer GUI to create ACLs
- Using the Windows Vista Explorer GUI to create ACLs
- POSIX ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- HP CIFS Server Directory ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- In conclusion
- 4 Windows style domains
- Introduction
- Configure HP CIFS Server as a PDC
- Configure HP CIFS Server as a BDC
- Domain member server
- Create the Machine Trust Accounts
- Configure domain users
- Join a Windows client to a Samba domain
- Roaming profiles
- Configuring user logon scripts
- Home drive mapping support
- Trust relationships
- 5 Windows 2003 and Windows 2008 domains
- 6 LDAP integration support
- Overview
- Network environments
- Summary of installing and configuring
- Installing and configuring your Directory Server
- Installing LDAP-UX Client Services on an HP CIFS Server
- Configuring the LDAP-UX Client Services
- Enabling Secure Sockets Layer (SSL)
- Extending the Samba subschema into your Directory Server
- Migrating your data to the Directory Server
- Configuring the HP CIFS Server
- Creating Samba users in directory
- Management tools
- 7 Winbind support
- 8 Kerberos support
- 9 HP CIFS deployment models
- Introduction
- Samba Domain Model
- Windows Domain Model
- Unified Domain Model
- 10 Securing HP CIFS Server
- 11 Configuring HA HP CIFS
- 12 HP-UX configuration for HP CIFS
- 13 Tool reference
- Glossary
- Index
backend parameter in smb.conf to ldapsam:ldap://<ldap server name>, this tool adds
Samba user accounts that correspond to existing POSIX user accounts to the LDAP directory server.
See the syncsmbpasswd (1) manpage for details.
For example, use the following procedures to synchronize Samba user accounts with available
POSIX user accounts in the LDAP directory server, ldaphostA.example.hp.com:
1. Configure the passdb backend parameter in smb.conf:
$ passdb backend = ldapsam:ldap://ldaphostA.example.hp.com
2. Run the following command:
$ syncsmbpasswd
Configuring the HP CIFS Server
You must set up and configure your HP CIFS Server to enable the LDAP feature support.
LDAP configuration parameters
The following is the list of new global parameters available for you to configure the HP CIFS Server
to enable the LDAP feature. These parameters are set in the /etc/opt/samba/smb.conf file
under global parameters.
[global] Any global setting defined here will be used by the HP CIFS Server with the LDAP
support.
Table 13 Global parameters
DescriptionParameter
Specifies the host name of the Directory Server where you want to
store your data.
ldap server
Specifies the base of the directory tree where you want to add users
and machine accounts information. It is also used as the Distinguished
ldap suffix
Name (DN) of the search base, which tells LDAP where to start the
search for the entry. For example, if your base DN is "dc=org,
dc=hp, dc=com", then you need to set the value of ldapsuffix
= "dc=org, dc=hp, dc=com".
Specifies the base of the directory tree where you want to add users
information. If you do not specify this parameter, HP CIFS Server uses
ldap user suffix
the value of ldap suffix. For example, ldap user suffix =
"ou=People".
Specifies the base of the directory tree where you want to add groups
information. If you do not specify this parameter, HP CIFS Server uses
ldap group suffix
the value of ldap suffix instead. For example, ldap group
suffix = "ou=Groups".
Specifies the user Distinguished Name (DN) used by the HP CIFS
Server to connect to the LDAP directory server when retrieving user
ldap admin dn
account information. The ldap admin dn is used in conjunction
with the admin dn password stored in the /var/opt/samba/
private/secrets.tdb file. For example, ldap admin dn =
"cn = directory manager".
Specifies whether a delete operation in the ldapsam deletes the
complete entry or only the attributes specific to Samba. The default
value is No.
ldap delete dn
92 LDAP integration support