Book description
Fully Updated to Reflect Major Improvements and Configuration Changes in Samba-3.0.11 through 3.0.20+!
You’ve deployed Samba: Now get the most out of it with today’s definitive guide to maximizing Samba performance, stability, reliability, and power in your production environment. Direct from members of the Samba Team, The Official Samba-3 HOWTO and Reference Guide, Second Edition, offers the most systematic and authoritative coverage of Samba’s advanced features and capabilities. It has been extensively updated to reflect major improvements in the Samba-3.0 series of releases and additional performance enhancements in Samba-3.0.20 and later.
Use this book to go far beyond basic deployment, leveraging all of Samba’s components, from directory services to remote administration. Use it to find practical optimization techniques for any environment, from the workgroup to the enterprise. Use it to find detailed guidance and best practices for troubleshooting and problem solving. And, if your background is in Windows networking, use this book to get up to speed rapidly with Samba network administration in Linux/UNIX environments.
Coverage includes
NEW! User Rights and Privileges features and their impact on default system behavior
NEW! Expanded LDAP capabilities, the new Winbind subsystem, and Samba’s improved ACL handling
NEW! Detailed coverage of the powerful Samba-3.x net local/remote administration utility
NEW! Comprehensive documentation of IDMAP functionality
NEW! Proven techniques for improving performance with large directories
NEW! Samba integration with Windows Server 2003 and the latest versions of Active Directory
Advanced techniques: interdomain trusts, loadable VFS file system drivers, distributed authentication, desktop profile management, CUPS printing, high availability, and more
Contains a dramatically improved, more-detailed index
Table of contents
- Copyright
- Bruce Perens’ Open Source Series
- About the Cover Artwork
- Attribution
- List of Examples
- List of Figures
- List of Tables
- Foreword
- Preface
- Introduction
-
I. General Installation
- 1. How to Install and Test Samba
- 2. Fast Start: Cure for Impatience
-
II. Server Configuration Basics
-
3. Server Types and Security Modes
- 3.1. Features and Benefits
- 3.2. Server Types
- 3.3. Samba Security Modes
- 3.4. Password Checking
- 3.5. Common Errors
-
4. Domain Control
- 4.1. Features and Benefits
- 4.2. Single Sign-On and Domain Security
- 4.3. Basics of Domain Control
- 4.4. Domain Control: Example Configuration
- 4.5. Samba ADS Domain Control
- 4.6. Domain and Network Logon Configuration
-
4.7. Common Errors
- 4.7.1. “$” Cannot Be Included in Machine Name
- 4.7.2. Joining Domain Fails Because of Existing Machine Account
- 4.7.3. The System Cannot Log You On (C000019B)
- 4.7.4. The Machine Trust Account Is Not Accessible
- 4.7.5. Account Disabled
- 4.7.6. Domain Controller Unavailable
- 4.7.7. Cannot Log onto Domain Member Workstation After Joining Domain
-
5. Backup Domain Control
- 5.1. Features and Benefits
- 5.2. Essential Background Information
- 5.3. Backup Domain Controller Configuration
- 5.4. Common Errors
-
6. Domain Membership
- 6.1. Features and Benefits
- 6.2. MS Windows Workstation/Server Machine Trust Accounts
- 6.3. Domain Member Server
- 6.4. Samba ADS Domain Membership
- 6.5. Sharing User ID Mappings between Samba Domain Members
- 6.6. Common Errors
- 7. Standalone Servers
- 8. MS Windows Network Configuration Guide
-
3. Server Types and Security Modes
-
III. Advanced Configuration
-
9. Network Browsing
- 9.1. Features and Benefits
- 9.2. What Is Browsing?
- 9.3. Discussion
-
9.4. How Browsing Functions
- 9.4.1. Configuring Workgroup Browsing
- 9.4.2. Domain Browsing Configuration
- 9.4.3. Forcing Samba to Be the Master
- 9.4.4. Making Samba the Domain Master
- 9.4.5. Note about Broadcast Addresses
- 9.4.6. Multiple Interfaces
- 9.4.7. Use of the Remote Announce Parameter
- 9.4.8. Use of the Remote Browse Sync Parameter
- 9.5. WINS: The Windows Internetworking Name Server
- 9.6. Helpful Hints
- 9.7. Technical Overview of Browsing
- 9.8. Common Errors
-
10. Account Information Databases
- 10.1. Features and Benefits
- 10.2. Technical Information
- 10.3. Account Management Tools
-
10.4. Password Backends
- 10.4.1. Plaintext
- 10.4.2. smbpasswd: Encrypted Password Database
- 10.4.3. tdbsam
-
10.4.4. ldapsam
- 10.4.4.1. Supported LDAP Servers
- 10.4.4.2. Schema and Relationship to the RFC 2307 posixAccount
- 10.4.4.3. OpenLDAP Configuration
- 10.4.4.4. Initialize the LDAP Database
- 10.4.4.5. Configuring Samba
- 10.4.4.6. Accounts and Groups Management
- 10.4.4.7. Security and sambaSamAccount
- 10.4.4.8. LDAP Special Attributes for sambaSamAccounts
- 10.4.4.9. Example LDIF Entries for a sambaSamAccount
- 10.4.4.10. Password Synchronization
- 10.4.4.11. Using OpenLDAP Overlay for Password Syncronization
- 10.4.5. MySQL
- 10.4.6. XML
- 10.5. Common Errors
-
11. Group Mapping: Ms Windows and Unix
- 11.1. Features and Benefits
- 11.2. Discussion
- 11.3. Configuration Scripts
- 11.4. Common Errors
-
12. Remote and Local Management: The Net Command
- 12.1. Overview
- 12.2. Administrative Tasks and Methods
- 12.3. UNIX and Windows Group Management
- 12.4. UNIX and Windows User Management
- 12.5. Administering User Rights and Privileges
- 12.6. Managing Trust Relationships
- 12.7. Managing Security Identifiers (SIDS)
- 12.8. Share Management
- 12.9. Controlling Open Files
- 12.10. Session and Connection Management
- 12.11. Printers and ADS
- 12.12. Manipulating the Samba Cache
- 12.13. Other Miscellaneous Operations
- 13. Identity Mapping (IDMAP)
- 14. User Rights and Privileges
-
15. File, Directory, and Share Access Controls
- 15.1. Features and Benefits
- 15.2. File System Access Controls
- 15.3. Share Definition Access Controls
- 15.4. Access Controls on Shares
-
15.5. MS Windows Access Control Lists and UNIX Interoperability
- 15.5.1. Managing UNIX Permissions Using NT Security Dialogs
- 15.5.2. Viewing File Security on a Samba Share
- 15.5.3. Viewing File Ownership
- 15.5.4. Viewing File or Directory Permissions
- 15.5.5. Modifying File or Directory Permissions
- 15.5.6. Interaction with the Standard Samba “create mask” Parameters
- 15.5.7. Interaction with the Standard Samba File Attribute Mapping
- 15.5.8. Windows NT/200X ACLs and POSIX ACLs Limitations
- 15.6. Common Errors
-
16. File and Record Locking
- 16.1. Features and Benefits
-
16.2. Discussion
-
16.2.1. Opportunistic Locking Overview
- 16.2.1.1. Exclusively Accessed Shares
- 16.2.1.2. Multiple-Accessed Shares or Files
- 16.2.1.3. UNIX or NFS Client-Accessed Files
- 16.2.1.4. Slow and/or Unreliable Networks
- 16.2.1.5. Multiuser Databases
- 16.2.1.6. PDM Data Shares
- 16.2.1.7. Beware of Force User
- 16.2.1.8. Advanced Samba Oplocks Parameters
- 16.2.1.9. Mission-Critical, High-Availability
-
16.2.1. Opportunistic Locking Overview
- 16.3. Samba Oplocks Control
- 16.4. MS Windows Oplocks and Caching Controls
- 16.5. Persistent Data Corruption
- 16.6. Common Errors
- 16.7. Additional Reading
- 17. Securing Samba
- 18. Interdomain Trust Relationships
- 19. Hosting a Microsoft Distributed File System Tree
-
20. Classical Printing Support
- 20.1. Features and Benefits
- 20.2. Technical Introduction
- 20.3. Simple Print Configuration
- 20.4. Extended Printing Configuration
- 20.5. Printing Developments Since Samba-2.2
-
20.6. Installing Drivers into [print$]
- 20.6.1. Add Printer Wizard Driver Installation
-
20.6.2. Installing Print Drivers Using rpcclient
- 20.6.2.1. Identifying Driver Files
- 20.6.2.2. Obtaining Driver Files from Windows Client [print$] Shares
- 20.6.2.3. Installing Driver Files into [print$]
- 20.6.2.4. smbclient to Confirm Driver Installation
- 20.6.2.5. Running rpcclient with adddriver
- 20.6.2.6. Checking adddriver Completion
- 20.6.2.7. Check Samba for Driver Recognition
- 20.6.2.8. Specific Driver Name Flexibility
- 20.6.2.9. Running rpcclient with setdriver
- 20.7. Client Driver Installation Procedure
-
20.8. Other Gotchas
- 20.8.1. Setting Default Print Options for Client Drivers
- 20.8.2. Supporting Large Numbers of Printers
- 20.8.3. Adding New Printers with the Windows NT APW
- 20.8.4. Error Message: “Cannot connect under a different Name”
- 20.8.5. Take Care When Assembling Driver Files
- 20.8.6. Samba and Printer Ports
- 20.8.7. Avoiding Common Client Driver Misconfiguration
- 20.9. The Imprints Toolset
- 20.10. Adding Network Printers without User Interaction
- 20.11. The addprinter Command
- 20.12. Migration of Classical Printing to Samba
- 20.13. Publishing Printer Information in Active Directory or LDAP
- 20.14. Common Errors
-
21. Cups Printing Support
- 21.1. Introduction
- 21.2. Basic CUPS Support Configuration
- 21.3. Advanced Configuration
-
21.4. Advanced Intelligent Printing with PostScript Driver Download
- 21.4.1. GDI on Windows, PostScript on UNIX
- 21.4.2. Windows Drivers, GDI, and EMF
- 21.4.3. UNIX Printfile Conversion and GUI Basics
- 21.4.4. PostScript and Ghostscript
- 21.4.5. Ghostscript: The Software RIP for Non-PostScript Printers
- 21.4.6. PostScript Printer Description (PPD) Specification
- 21.4.7. Using Windows-Formatted Vendor PPDs
- 21.4.8. CUPS Also Uses PPDs for Non-PostScript Printers
-
21.5. The CUPS Filtering Architecture
- 21.5.1. MIME Types and CUPS Filters
- 21.5.2. MIME Type Conversion Rules
- 21.5.3. Filtering Overview
- 21.5.4. Prefilters
- 21.5.5. pstops
- 21.5.6. pstoraster
- 21.5.7. imagetops and imagetoraster
- 21.5.8. rasterto [printers specific]
- 21.5.9. CUPS Backends
- 21.5.10. The Role of cupsomatic/foomatic
- 21.5.11. The Complete Picture
- 21.5.12. mime.convs
- 21.5.13. “Raw” Printing
- 21.5.14. application/octet-stream Printing
- 21.5.15. PostScript Printer Descriptions for Non-PostScript Printers
- 21.5.16. cupsomatic/foomatic-rip Versus Native CUPS Printing
- 21.5.17. Examples for Filtering Chains
- 21.5.18. Sources of CUPS Drivers/PPDs
- 21.5.19. Printing with Interface Scripts
- 21.6. Network Printing (Purely Windows)
- 21.7. Network Printing (Windows Clients and UNIX/Samba Print Servers)
- 21.8. Network PostScript RIP
- 21.9. Windows Terminal Servers (WTS) as CUPS Clients
-
21.10. Configuring CUPS for Driver Download
- 21.10.1. cupsaddsmb: The Unknown Utility
- 21.10.2. Prepare Your smb.conf for cupsaddsmb
- 21.10.3. CUPS “PostScript Driver for Windows NT/200x/XP”
- 21.10.4. Recognizing Different Driver Files
- 21.10.5. Acquiring the Adobe Driver Files
- 21.10.6. ESP Print Pro PostScript Driver for Windows NT/200x/XP
- 21.10.7. Caveats to Be Considered
- 21.10.8. Windows CUPS PostScript Driver Versus Adobe Driver
- 21.10.9. Run cupsaddsmb (Quiet Mode)
- 21.10.10. Run cupsaddsmb with Verbose Output
- 21.10.11. Understanding cupsaddsmb
- 21.10.12. How to Recognize If cupsaddsmb Completed Successfully
- 21.10.13. cupsaddsmb with a Samba PDC
- 21.10.14. cupsaddsmb Flowchart
- 21.10.15. Installing the PostScript Driver on a Client
- 21.10.16. Avoiding Critical PostScript Driver Settings on the Client
- 21.11. Installing PostScript Driver Files Manually Using rpcclient
- 21.12. The Printing *.tdb Files
-
21.13. CUPS Print Drivers from Linuxprinting.org
-
21.13.1. foomatic-rip and Foomatic Explained
- 21.13.1.1. 690 “Perfect” Printers
- 21.13.1.2. How the Printing HOWTO Started It All
- 21.13.1.3. Foomatic’s Strange Name
- 21.13.1.4. cupsomatic, pdqomatic, lpdomatic, directomatic
- 21.13.1.5. The Grand Unification Achieved
- 21.13.1.6. Driver Development Outside
- 21.13.1.7. Forums, Downloads, Tutorials, Howtos (Also for Mac OS X and Commercial UNIX)
- 21.13.1.8. Foomatic Database-Generated PPDs
- 21.13.2. foomatic-rip and Foomatic PPD Download and Installation
-
21.13.1. foomatic-rip and Foomatic Explained
- 21.14. Page Accounting with CUPS
- 21.15. Additional Material
- 21.16. Autodeletion or Preservation of CUPS Spool Files
- 21.17. Printing from CUPS to Windows-Attached Printers
- 21.18. More CUPS Filtering Chains
-
21.19. Common Errors
- 21.19.1. Windows 9x/Me Client Can’t Install Driver
- 21.19.2. “cupsaddsmb” Keeps Asking for Root Password in Never-ending Loop
- 21.19.3. “cupsaddsmb” or “rpcclient addriver” Emit Error
- 21.19.4. “cupsaddsmb” Errors
- 21.19.5. Client Can’t Connect to Samba Printer
- 21.19.6. New Account Reconnection from Windows 200x/XP Troubles
- 21.19.7. Avoid Being Connected to the Samba Server as the Wrong User
- 21.19.8. Upgrading to CUPS Drivers from Adobe Drivers
- 21.19.9. Can’t Use “cupsaddsmb” on Samba Server, Which Is a PDC
- 21.19.10. Deleted Windows 200x Printer Driver Is Still Shown
- 21.19.11. Windows 200x/XP Local Security Policies
- 21.19.12. Administrator Cannot Install Printers for All Local Users
- 21.19.13. Print Change, Notify Functions on NT Clients
- 21.19.14. Win XP-SP1
- 21.19.15. Print Options for All Users Can’t Be Set on Windows 200x/XP
- 21.19.16. Most Common Blunders in Driver Settings on Windows Clients
- 21.19.17. cupsaddsmb Does Not Work with Newly Installed Printer
- 21.19.18. Permissions on /var/spool/samba/ Get Reset After Each Reboot
- 21.19.19. Print Queue Called “lp” Mishandles Print Jobs
- 21.19.20. Location of Adobe PostScript Driver Files for “cupsaddsmb”
- 21.20. Overview of the CUPS Printing Processes
- 22. Stackable Vfs Modules
-
23. Winbind: Use of Domain Accounts
- 23.1. Features and Benefits
- 23.2. Introduction
- 23.3. What Winbind Provides
- 23.4. How Winbind Works
-
23.5. Installation and Configuration
- 23.5.1. Introduction
- 23.5.2. Requirements
-
23.5.3. Testing Things Out
- 23.5.3.1. Configure nsswitch.conf and the Winbind Libraries on Linux and Solaris
- 23.5.3.2. NSS Winbind on AIX
- 23.5.3.3. Configure smb.conf
- 23.5.3.4. Join the Samba Server to the PDC Domain
- 23.5.3.5. Starting and Testing the winbindd Daemon
- 23.5.3.6. Fix the init.d Startup Scripts
- 23.5.3.7. Configure Winbind and PAM
- 23.6. Conclusion
- 24. Advanced Network Management
- 25. System and Account Policies
-
26. Desktop Profile Management
- 26.1. Features and Benefits
- 26.2. Roaming Profiles
- 26.3. Mandatory Profiles
- 26.4. Creating and Managing Group Profiles
- 26.5. Default Profile for Windows Users
- 26.6. Common Errors
- 27. Pam-Based Distributed Authentication
- 28. Integrating Ms Windows Networks with Samba
- 29. Unicode/Charsets
- 30. Backup Techniques
-
31. High Availability
- 31.1. Features and Benefits
-
31.2. Technical Discussion
- 31.2.1. The Ultimate Goal
-
31.2.2. Why Is This So Hard?
- 31.2.2.1. The Front-End Challenge
- 31.2.2.2. Demultiplexing SMB Requests
- 31.2.2.3. The Distributed File System Challenge
- 31.2.2.4. Restrictive Constraints on Distributed File Systems
- 31.2.2.5. Server Pool Communications
- 31.2.2.6. Server Pool Communications Demands
- 31.2.2.7. Required Modifications to Samba
- 31.2.3. A Simple Solution
- 31.2.4. High-Availability Server Products
- 31.2.5. MS-DFS: The Poor Man’s Cluster
- 31.2.6. Conclusions
- 32. Handling Large Directories
- 33. Advanced Configuration Techniques
-
9. Network Browsing
-
IV. Migration and Updating
- 34. Upgrading from Samba-2.X to Samba-3.0.20
- 35. Migration from NT4 PDC to Samba-3 Pdc
- 36. Swat: The Samba Web Administration Tool
- V. Troubleshooting
-
VI. Reference Section
- 40. How to Compile Samba
- 41. Portability
- 42. Samba and Other Cifs Clients
- 43. Samba Performance Tuning
- 44. Ldap and Transport Layer Security
- 45. Samba Support
- 46. Dns and Dhcp Configuration Guide
-
47. Manual Pages
- 47.1. net
- 47.2. nmbd
- 47.3. nmblookup
- 47.4. pdbedit
- 47.5. profiles
- 47.6. rpcclient
- 47.7. smbcacls
- 47.8. smbclient
- 47.9. smb.conf
- 47.10. smbcquotas
- 47.11. smbd
- 47.12. smbpasswd
- 47.13. smbpasswd
- 47.14. smbstatus
- 47.15. smbtree
- 47.16. tdbbackup
- 47.17. tdbdump
- 47.18. testparm
- 47.19. wbinfo
- 47.20. winbindd
- A. Gnu General Public License
- Glossary
Product information
- Title: Official Samba-3 HOWTO and Reference Guide, The, Second Edition
- Author(s):
- Release date: August 2005
- Publisher(s): Pearson
- ISBN: 0131882228
You might also like
book
Official Samba-3 HOWTO and Reference Guide, The
"The breadth of technical information provided in this book ensures that even the most demanding of …
book
Professional C# 2008
Professional C# 2008 starts by reviewing the overall architecture of .NET in Chapter 1 in order …
book
Win32 System Services: The Heart of Windows® 98 and Windows® 2000
The Win32 best-seller, fully updated for Windows 2000 and Windows 98! Master every key Win32 system …
book
Red Hat® Enterprise Linux® 5 Administration Unleashed
This comprehensive guide can help you administer Red Hat Enterprise Linux 5 effectively in any production …