SME Domain Client Howto 

Author:  Greg Zartman <greg@leiinc.com>
Contributor:
  
Release supported: e-smith 4.x, SME 5.x
License: GPL
Last updated: Friday, January 17, 2003 10:06 AM

 


Problem:  You want to configure an SME server to participate as a member of either a windows domain or another SME (samba) domain.
Solution:
  Follow this howto. 


STEP 1:  Create a custom template fragment directory for  smb.conf:

[root@testbed /]# mkdir -p /etc/e-smith/templates-custom/etc/smb.conf/
[root@testbed /]#

STEP 2:  Copy the relevant, default,  smb.conf template fragments to the smb.conf custom template location:

[root@testbed root]# cd /etc/e-smith/templates-custom/etc/smb.conf/
[root@testbed smb.conf]#
 
[root@testbed smb.conf]# cp /etc/e-smith/templates/etc/smb.conf/11guestOk .
[root@testbed smb.conf]#

root@testbed smb.conf]# cp /etc/e-smith/templates/etc/smb.conf/11passwordServer .
[root@testbed smb.conf]#

root@testbed smb.conf]# cp /etc/e-smith/templates/etc/smb.conf/11preferredMaster .
[root@testbed smb.conf]#

root@testbed smb.conf]# cp /etc/e-smith/templates/etc/smb.conf/11security .
[root@testbed smb.conf]#

root@testbed smb.conf]# cp /etc/e-smith/templates/etc/smb.conf/11smbPasswdFile .
[root@testbed smb.conf]#

Note:  This step has you accessing the smb.conf custom template directory and copying then  the appropriate fragments to the current location using the "." current directory alias.


STEP 3:  Edit 11guestOk template fragment:

[root@testbed root]# pico 11guestOk

--In Pico--

{
# If this parameter is 'yes' for a service, then no password is
# required to connect to the service.
}
guest ok = yes

Save and exit pico using Ctrl-x.


 STEP 4:  Edit 11passwordServer:

[root@testbed root]# pico 11passwordServer

--In Pico--

{
# Use password server option only with security = server
# ; password server = <NT-Server-Name>
}

password server = <put the NetBios name of your PDC server here>

Note:  Do not include <> around the PDC Netbios name.

Save and exit pico using Ctrl-x.


STEP 5:  Edit 11preferredMaster template fragment:

[root@testbed root]# pico 11preferredMaster

--In Pico--

{
# Preferred Master causes Samba to force a local browser election on startup
# and gives it a slightly higher chance of winning the election
}

Save and exit pico using Ctrl-x.


STEP 6:  Edit 11security template fragment:

[root@testbed root]# pico 11security

--In Pico--

# Security mode. Most people will want user level security. See
# security_level.txt for details.
}
security = domain

Save and exit pico using Ctrl-x.


STEP 7:  Edit 11smbPasswdFile template fragment:

[root@testbed root]# pico 11smbPasswdFile

--In Pico--

#smb passwd file = /etc/smbpasswd

Save and exit pico using Ctrl-x.


STEP 8:  Create a WINS server entry in the configuration database:

[root@testbed root]# /sbin/e-smith/db configuration setprop smb WINSServer <IP Address of your PDC>
[root@testbed root]#

Note:  Do not include <> around the WINS Server IP address.  Also not that the WINS server IP address is almost always the IP address of the PDC.


STEP 9:  Expand /etc/smb.conf template fragments:

[root@testbed root]# /sbin/e-smith/expand-template /etc/smb.conf
[root@testbed root]#

STEP 10:  Add this SME machine to the desired domain:

[root@testbed root]# smbpasswd -j <domain> -r <PDC netbios name> -U <domain admin username>
Password:
Joined domain <domain>.
[root@testbed smb.conf]#

Note:  Do not include <> around the domain, PDC netbios name, or domain admin username.  Also note that the domain admin username is the username that is used to grant domain privileges.  If another SME server is the PDC, then the domain admin username is "admin."


STEP 11:  Restart samba:

[root@testbed smb.conf]# /etc/rc.d/init.d/smb restart
Shutting down SMB services: [ OK ]
Shutting down NMB services: [ OK ]
Starting SMB services: [ OK ]
Starting NMB services: [ OK ]
[root@testbed smb.conf]#

Thats it!!  You should now be able to browse and access shares on the SME domain client from other authenticated domain clients.