From 709054576a15af438d5d44666f8104d55745f407 Mon Sep 17 00:00:00 2001 From: John Terpstra Date: Wed, 25 May 2005 23:41:19 +0000 Subject: More edits. (This used to be commit f774111756c5474ecdd1f26d417ccf1469ee688e) --- docs/Samba-Guide/SBE-MigrateNT4Samba3.xml | 195 ++++++++++++++-------------- docs/Samba-Guide/SBE-SecureOfficeServer.xml | 181 +++++++++++++------------- 2 files changed, 187 insertions(+), 189 deletions(-) (limited to 'docs/Samba-Guide') diff --git a/docs/Samba-Guide/SBE-MigrateNT4Samba3.xml b/docs/Samba-Guide/SBE-MigrateNT4Samba3.xml index af575d4c48..db518bb550 100644 --- a/docs/Samba-Guide/SBE-MigrateNT4Samba3.xml +++ b/docs/Samba-Guide/SBE-MigrateNT4Samba3.xml @@ -399,108 +399,103 @@ no account information can be deleted. - + NT4 Migration Samba-3 Server <filename>smb.conf</filename> &smbmdash; Part: A - -# Global parameters -[global] - workgroup = DAMNATION - netbios name = MERLIN - passdb backend = ldapsam:ldap://localhost - username map = /etc/samba/smbusers - log level = 1 - syslog = 0 - log file = /var/log/samba/%m - max log size = 0 - smb ports = 139 445 - name resolve order = wins bcast hosts - show add printer wizard = Yes - add user script = /opt/IDEALX/sbin/smbldap-useradd -m '%u' -# delete user script = /opt/IDEALX/sbin/smbldap-userdel '%u' - add group script = /opt/IDEALX/sbin/smbldap-groupadd -p '%g' -t domain -# delete group script = /opt/IDEALX/sbin/smbldap-groupdel '%g' - add user to group script = /opt/IDEALX/sbin/smbldap-groupmod -m '%u' '%g' -t domain -# delete user from group script = /opt/IDEALX/sbin/smbldap-groupmod -x '%u' '%g' -t domain - set primary group script = /opt/IDEALX/sbin/smbldap-usermod -g '%g' '%u' - add machine script = /opt/IDEALX/sbin/smbldap-useradd -w '%u' - logon script = scripts\logon.cmd - logon path = \\%L\profiles\%U - logon home = \\%L\%U - logon drive = X: - domain logons = Yes - domain master = No -# wins support = Yes - wins server = 192.168.123.124 - ldap admin dn = cn=Manager,dc=terpstra-world,dc=org - ldap group suffix = ou=Groups - ldap idmap suffix = ou=Idmap - ldap machine suffix = ou=People - ldap passwd sync = Yes - ldap suffix = dc=terpstra-world,dc=org - ldap ssl = no - ldap timeout = 20 - ldap user suffix = ou=People - idmap backend = ldap:ldap://localhost - idmap uid = 15000-20000 - idmap gid = 15000-20000 - winbind nested groups = Yes - ea support = Yes - map acl inherit = Yes - - - - +Global parameters + + DAMNATION + MERLIN + ldapsam:ldap://localhost + /etc/samba/smbusers + 1 + 0 + /var/log/samba/%m + 0 + 139 445 + wins bcast hosts + Yes + /opt/IDEALX/sbin/smbldap-useradd -m '%u' + /opt/IDEALX/sbin/smbldap-userdel '%u' + /opt/IDEALX/sbin/smbldap-groupadd '%g' + /opt/IDEALX/sbin/smbldap-groupdel '%g' + /opt/IDEALX/sbin/ +smbldap-groupmod -m '%u' '%g' + /opt/IDEALX/ +sbin/smbldap-groupmod -x '%u' '%g' + /opt/IDEALX/ +sbin/smbldap-usermod -g '%g' '%u' + /opt/IDEALX/sbin/ +smbldap-useradd -w '%u' + scripts\logon.cmd + \\%L\profiles\%U + \\%L\%U + X: + Yes + No + Yes + 192.168.123.124 + cn=Manager,dc=terpstra-world,dc=org + ou=Groups + ou=Idmap + ou=People + Yes + dc=terpstra-world,dc=org + no + 20 + ou=People + ldap:ldap://localhost + 15000-20000 + 15000-20000 + Yes + Yes + Yes + + + NT4 Migration Samba-3 Server <filename>smb.conf</filename> &smbmdash; Part: B - -[apps] - comment = Application Data - path = /data/home/apps - read only = No - -[media] - comment = Media Files - path = /data/home2 - read only = No - -[homes] - comment = Home Directories - path = /home/users/%U/Documents - valid users = %S - read only = No - browseable = No - -[printers] - comment = SMB Print Spool - path = /var/spool/samba - guest ok = Yes - printable = Yes - use client driver = No - browseable = No - -[netlogon] - comment = Network Logon Service - path = /var/lib/samba/netlogon - guest ok = Yes - locking = No - -[profiles] - comment = Profile Share - path = /var/lib/samba/profiles - read only = No - profile acls = Yes - -[profdata] - comment = Profile Data Share - path = /var/lib/samba/profdata - read only = No - profile acls = Yes - -[print$] - comment = Printer Drivers - path = /var/lib/samba/drivers - write list = root - - + + Application Data + /data/home/apps + No + + + Home Directories + /home/users/%U/Documents + %S + No + No + + + SMB Print Spool + /var/spool/samba + Yes + Yes + No + No + + + Network Logon Service + /var/lib/samba/netlogon + Yes + No + + + Profile Share + /var/lib/samba/profiles + No + Yes + + + Profile Data Share + /var/lib/samba/profdata + No + Yes + + + Printer Drivers + /var/lib/samba/drivers + + slapd.conf Configure OpenLDAP in preparation for the migration. An example diff --git a/docs/Samba-Guide/SBE-SecureOfficeServer.xml b/docs/Samba-Guide/SBE-SecureOfficeServer.xml index 3dcbba4cd3..fb8562f577 100644 --- a/docs/Samba-Guide/SBE-SecureOfficeServer.xml +++ b/docs/Samba-Guide/SBE-SecureOfficeServer.xml @@ -821,6 +821,7 @@ echo -e "\nNAT firewall done.\n" Yes tdbsam Yes +/usr/bin/passwd %u *New*Password* %n\n *Re-enter*new*password*%n\n *Password*changed* /etc/samba/smbusers @@ -2207,14 +2208,15 @@ Nmap run completed -- 1 IP address (1 host up) scanned in 168 seconds be done with notebook computers as long as they are identical or sufficiently similar. - + + Windows Client Configuration Procedure + - Install MS Windows XP Professional. During installation, configure the client to use DHCP for - TCP/IP protocol configuration. WINS DHCP - DHCP configures all Windows clients to use the WINS Server address that has been defined - for the local subnet. + Install MS Windows XP Professional. During installation, configure the client to use DHCP for + TCP/IP protocol configuration. DHCP configures all Windows clients to use the WINS Server + address that has been defined for the local subnet. @@ -2229,8 +2231,8 @@ Nmap run completed -- 1 IP address (1 host up) scanned in 168 seconds Verify DIAMOND is visible in My Network Places, that it is possible to connect to it and see the shares accounts, - apps, and finsvcs, - and that it is possible to open each share to reveal its contents. + apps, and finsvcs, and that it is + possible to open each share to reveal its contents. @@ -2253,94 +2255,95 @@ Nmap run completed -- 1 IP address (1 host up) scanned in 168 seconds Now install all four printers onto the staging system. The printers you install include the accounting department HP LaserJet 6 and Minolta QMS Magicolor printers. You will also configure identical printers that are located in the financial services department. - Install printers on each machine using the following steps: - + Install printers on each machine using the steps shown in . + - - - Click - Start - Settings - Printers - Add Printer - Next - . Do not click Network printer. - Ensure that Local printer is selected. - - - - Click Next. In the - Manufacturer: panel, select HP. - In the Printers: panel, select the printer called - HP LaserJet 6. Click Next. - - - - In the Available ports: panel, select - FILE:. Accept the default printer name by clicking - Next. When asked, Would you like to print a - test page?, click No. Click - Finish. - - - - You may be prompted for the name of a file to print to. If so, close the - dialog panel. Right-click - HP LaserJet 6 - Properties - Details (Tab) - Add Port - . - - - - In the Network panel, enter the name of - the print queue on the Samba server as follows: \\DIAMOND\hplj6a. - Click - OK - OK - to complete the installation. - - - - Repeat the printer installation steps above for both HP LaserJet 6 printers - as well as for both QMS Magicolor laser printers. - - - + + defragmentation + When you are satisfied that the staging systems are complete, use the appropriate procedure to + remove the client from the domain. Reboot the system and then log on as the local administrator + and clean out all temporary files stored on the system. Before shutting down, use the disk + defragmentation tool so that the file system is in optimal condition before replication. + - - defragmentation - When you are satisfied that the staging systems are complete, use the appropriate procedure to - remove the client from the domain. Reboot the system and then log on as the local administrator - and clean out all temporary files stored on the system. Before shutting down, use the disk - defragmentation tool so that the file system is in optimal condition before replication. - + + Boot the workstation using the Norton (Symantec) Ghosting diskette (or CD-ROM) and image the + machine to a network share on the server. + - - Boot the workstation using the Norton (Symantec) Ghosting diskette (or CD-ROM) and image the - machine to a network share on the server. - + + Windows security identifierSID + SID + You may now replicate the image to the target machines using the appropriate Norton Ghost + procedure. Make sure to use the procedure that ensures each machine has a unique + Windows security identifier (SID). When the installation of the disk image has completed, boot the PC. + - - Windows security identifierSID - SID - You may now replicate the image to the target machines using the appropriate Norton Ghost - procedure. Make sure to use the procedure that ensures each machine has a unique - Windows security identifier (SID). When the installation of the disk image has completed, boot the PC. - + + Log onto the machine as the local Administrator (the only option), and join the machine to + the Domain, following the procedure set out in Appendix A, . The system is now + ready for the user to log on, provided you have created a network logon account for that + user, of course. + - - Log onto the machine as the local Administrator (the only option), and join the machine to - the Domain, following the procedure set out in Appendix A, . The system is now - ready for the user to log on, provided you have created a network logon account for that - user, of course. - + + Instruct all users to log onto the workstation using their assigned username and password. + + - - Instruct all users to log onto the workstation using their assigned username and password. - - + + Windows Client Printer Preparation Procedure + + + Click + Start + Settings + Printers + Add Printer + Next + . Do not click Network printer. + Ensure that Local printer is selected. + + + + Click Next. In the + Manufacturer: panel, select HP. + In the Printers: panel, select the printer called + HP LaserJet 6. Click Next. + + + + In the Available ports: panel, select + FILE:. Accept the default printer name by clicking + Next. When asked, Would you like to print a + test page?, click No. Click + Finish. + + + + You may be prompted for the name of a file to print to. If so, close the + dialog panel. Right-click + HP LaserJet 6 + Properties + Details (Tab) + Add Port + . + + + + In the Network panel, enter the name of + the print queue on the Samba server as follows: \\DIAMOND\hplj6a. + Click + OK + OK + to complete the installation. + + + + Repeat the printer installation steps above for both HP LaserJet 6 printers + as well as for both QMS Magicolor laser printers. + + -- cgit