Build a primary domain controller using Samba in RHEL4 System

System Environment: RHEL4 [2.6.9-5.EL] Software Version: samba-3.0.10-1.4Esamba-common-3.0.10-1.4Esamba-client-3.0.10-1.4E target function: here only the samba server is used as the PDC master domain controller, hosts in the network can join the domain and log in with the domain account and roaming user configuration files. AD and domain account management are not stated here. Domain Controller [RHEL4]: netbiosname: Sa system environment: RHEL4 [2.6.9-5.EL]
Software Version:
Samba-3.0.10-1.4E
Samba-common-3.0.10-1.4E
Samba-client-3.0.10-1.4E

Target Features:
Here, only the samba server is used as the master domain controller of the PDC. hosts in the network can join the domain and log in with the domain account, and the user configuration file is roaming. AD and domain account management are not stated here.

Domain Controller [RHEL4]:
Netbios name: SambaPDC
Domain name: RedHat.com
Eth1: 192.168.1.1/24
Domain Member host [Win2003]:
Netbios name: xiyuan
Eth0: 192.168.1.100/24

1. Domain Controller
1> samba configuration [only list the main configurations]
[Global]
Workgroup = redhat.com // corresponding domain name
Netbios name = SambaPDC
Server string = Samba-PDC-Server
Security = user
Socket options = TCP_NODELAY SO_RCVBUF = 8192 SO_SNDBUF = 8192
Local master = yes
OS level = 64
Domain master = yes
Preferred master = yes
Domain logons = yes
Logon script = netlogon. bat
Logon path =\\ % L \ Profiles \ % U
Logon home =\\ % L \ % U \. profile
Logon drive = T:
; Add user script =/usr/sbin/useradd-d/dev/null-g machines-s/bin/falsev % U
Unix charset = cp936
[Homes]
Browseable = no
Writeable = yes
[Netlogon]
Path =/etc/samba/netlogon
Write list = root
Read only = yes
Browseable = no
Share modes = no
[Profiles]
Path =/etc/samba/Profiles
Valid users = root kenthy
Writeable = yes
Browseable = no
Create mask = 0765

2> samba user settings
# Useradd kenthy; passwd kenthy
# Smbpasswd-a root
# Smbpasswd-a kenthy
# Groupadd machines
# Useradd-d/dev/null-g machines-s/bin/false xiyuan $
# Passwd-l xiyuan $
# Smbpasswd-am xiyuan $

3> domain login directory settings
# Mkdir-p/etc/samba/netlogon/scripts
# Mkdir-p/etc/samba/Profiles
# Chmod 1777/etc/samba/Profiles
# Su-kenthy
$ Cd/etc/samba/Profiles
$ Mkdir kenthy

4> DNS server configuration, providing name resolution for redhat.com domain [process omitted]

5> start the service
# Service smb start

2. Domain Member host [WinXP or Win2003]
1> Find the WinXP_PlainPassword.reg and WinXP_SignOrSeal.reg files in the/usr/share/doc/samba-3.0.10/registry/directory on the samba server.
, Copy to and execute the command. You can also manually edit the Registry file to import the following content:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Services \ lanmanworkstation \ parameters]
"Enableplaintextpassword" = dword: 00000001
"Enablesecuritysignature" = dword: 00000001
"Requiresecuritysignature" = dword: 00000000
"ServiceDll" = hex (2): 25, 00, 53,00, 79,00, 00, 00, 6d, 00, 6f, 00, 6f ,\
, 25, 00, 5c, 00, 65, 00, 6d, 00, 00, 5c, 00 ,\
, 00, 6b, 00, 2e, 64, 00, 6c, 00, 6c, 00, 00
"OtherDomains" = hex (7): 00
[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Services \ Netlogon \ Parameters]
"Requiresignorseal" = dword: 00000000

2> direct the DNS server to PDC, choose "my computer"> "properties"> "computer name"> "change"> "affiliated"> "Domain", and enter "redhat.com ", enter the root user name and password as prompted. After the verification is passed, the redhat.com domain is successfully added.

3> after logging out, log on to the member host using the set kenthy domain user, and view and verify the user configuration file roaming and other functions.