- Timestamp:
- Jan 15, 2010, 8:21:06 AM (16 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/samba-3.3.x/docs/htmldocs/Samba3-ByExample/simple.html
r218 r368 1 <html><head><meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"><title>Chapter 1. No-Frills Samba Servers</title><link rel="stylesheet" href="../samba.css" type="text/css"><meta name="generator" content="DocBook XSL Stylesheets V1.7 4.0"><link rel="home" href="index.html" title="Samba-3 by Example"><link rel="up" href="ExNetworks.html" title="Part I. Example Network Configurations"><link rel="prev" href="ExNetworks.html" title="Part I. Example Network Configurations"><link rel="next" href="small.html" title="Chapter 2. Small Office Networking"></head><body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF"><div class="navheader"><table width="100%" summary="Navigation header"><tr><th colspan="3" align="center">Chapter 1. No-Frills Samba Servers</th></tr><tr><td width="20%" align="left"><a accesskey="p" href="ExNetworks.html">Prev</a> </td><th width="60%" align="center">Part I. Example Network Configurations</th><td width="20%" align="right"> <a accesskey="n" href="small.html">Next</a></td></tr></table><hr></div><div class="chapter" lang="en"><div class="titlepage"><div><div><h2 class="title"><a name="simple"></a>Chapter 1. No-Frills Samba Servers</h2></div></div></div><div class="toc"><p><b>Table of Contents</b></p><dl><dt><span class="sect1"><a href="simple.html#id2550864">Introduction</a></span></dt><dt><span class="sect1"><a href="simple.html#id2550904">Assignment Tasks</a></span></dt><dd><dl><dt><span class="sect2"><a href="simple.html#id2550946">Drafting Office</a></span></dt><dt><span class="sect2"><a href="simple.html#id2551655">Charity Administration Office</a></span></dt><dt><span class="sect2"><a href="simple.html#AccountingOffice">Accounting Office</a></span></dt></dl></dd><dt><span class="sect1"><a href="simple.html#id2554992">Questions and Answers</a></span></dt></dl></div><p>1 <html><head><meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"><title>Chapter 1. No-Frills Samba Servers</title><link rel="stylesheet" href="../samba.css" type="text/css"><meta name="generator" content="DocBook XSL Stylesheets V1.75.2"><link rel="home" href="index.html" title="Samba-3 by Example"><link rel="up" href="ExNetworks.html" title="Part I. Example Network Configurations"><link rel="prev" href="ExNetworks.html" title="Part I. Example Network Configurations"><link rel="next" href="small.html" title="Chapter 2. Small Office Networking"></head><body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF"><div class="navheader"><table width="100%" summary="Navigation header"><tr><th colspan="3" align="center">Chapter 1. No-Frills Samba Servers</th></tr><tr><td width="20%" align="left"><a accesskey="p" href="ExNetworks.html">Prev</a> </td><th width="60%" align="center">Part I. Example Network Configurations</th><td width="20%" align="right"> <a accesskey="n" href="small.html">Next</a></td></tr></table><hr></div><div class="chapter" title="Chapter 1. No-Frills Samba Servers"><div class="titlepage"><div><div><h2 class="title"><a name="simple"></a>Chapter 1. No-Frills Samba Servers</h2></div></div></div><div class="toc"><p><b>Table of Contents</b></p><dl><dt><span class="sect1"><a href="simple.html#id2556922">Introduction</a></span></dt><dt><span class="sect1"><a href="simple.html#id2556963">Assignment Tasks</a></span></dt><dd><dl><dt><span class="sect2"><a href="simple.html#id2557004">Drafting Office</a></span></dt><dt><span class="sect2"><a href="simple.html#id2557714">Charity Administration Office</a></span></dt><dt><span class="sect2"><a href="simple.html#AccountingOffice">Accounting Office</a></span></dt></dl></dd><dt><span class="sect1"><a href="simple.html#id2561049">Questions and Answers</a></span></dt></dl></div><p> 2 2 This is the start of the real journey toward the successful deployment of Samba. For some this chapter 3 3 is the end of the road because their needs will have been adequately met. For others, this chapter is … … 5 5 example configurations of, for the greater part, complete networking solutions. The intent of this book 6 6 is to help you to get your Samba installation working with the least amount of pain and aggravation. 7 </p><div class="sect1" lang="en"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a name="id2550864"></a>Introduction</h2></div></div></div><p>7 </p><div class="sect1" title="Introduction"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a name="id2556922"></a>Introduction</h2></div></div></div><p> 8 8 This chapter lays the groundwork for understanding the basics of Samba operation. 9 9 Instead of a bland technical discussion, each principle is demonstrated by way of a 10 real-world scenario for which a working solution<sup>[<a name="id255 0875" href="#ftn.id2550875" class="footnote">1</a>]</sup> is fully described.10 real-world scenario for which a working solution<sup>[<a name="id2556934" href="#ftn.id2556934" class="footnote">1</a>]</sup> is fully described. 11 11 </p><p> 12 12 The practical exercises take you on a journey through a drafting office, a charity administration … … 18 18 you should aim to be a Samba expert, so do attempt to find better solutions and try them as you work your 19 19 way through the examples. 20 </p></div><div class="sect1" lang="en"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a name="id2550904"></a>Assignment Tasks</h2></div></div></div><p>20 </p></div><div class="sect1" title="Assignment Tasks"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a name="id2556963"></a>Assignment Tasks</h2></div></div></div><p> 21 21 Each case presented highlights different aspects of Windows networking for which a simple 22 22 Samba-based solution can be provided. Each has subtly different requirements taken from real-world cases. … … 26 26 This chapter has three assignments built around fictitious companies: 27 27 </p><p> 28 </p><div class="itemizedlist"><ul type="disc"><li><p>A drafting office</p></li><li><p>A charity administration office</p></li><li><p>An accounting office</p></li></ul></div><p>28 </p><div class="itemizedlist"><ul class="itemizedlist" type="disc"><li class="listitem"><p>A drafting office</p></li><li class="listitem"><p>A charity administration office</p></li><li class="listitem"><p>An accounting office</p></li></ul></div><p> 29 29 </p><p> 30 30 Let's get started. 31 </p><div class="sect2" lang="en"><div class="titlepage"><div><div><h3 class="title"><a name="id2550946"></a>Drafting Office</h3></div></div></div><p>31 </p><div class="sect2" title="Drafting Office"><div class="titlepage"><div><div><h3 class="title"><a name="id2557004"></a>Drafting Office</h3></div></div></div><p> 32 32 Our fictitious company is called <span class="emphasis"><em>Abmas Design, Inc.</em></span> This is a three-person 33 33 computer-aided design (CAD) business that often has more work than can be handled. The … … 39 39 plans from each machine. The files available from the server must remain read-only. 40 40 Anyone should be able to access the plans at any time and without barriers or difficulty. 41 </p><p><a class="indexterm" name="id255 0971"></a>42 <a class="indexterm" name="id255 0977"></a>41 </p><p><a class="indexterm" name="id2557029"></a> 42 <a class="indexterm" name="id2557036"></a> 43 43 Mr. Bob Jordan has asked you to install the new server as economically as possible. The central 44 44 server has a Pentium-IV 1.6GHz CPU, 768MB RAM, a 20GB IDE boot drive, a 160GB IDE second disk … … 47 47 <a class="ulink" href="http://www.samba.org" target="_top">FTP</a> sites. (Note: Fedora CoreX indicates your favorite 48 48 version.) 49 </p><p><a class="indexterm" name="id255 1005"></a>49 </p><p><a class="indexterm" name="id2557063"></a> 50 50 The four permanent drafting machines (Microsoft Windows workstations) have attached printers 51 51 and plotters that are shared on a peer-to-peer basis by any and all network users. The intent … … 56 56 machine. The office works best with this arrangement and does not want to change anything. 57 57 Old habits are too ingrained. 58 </p><div class="sect3" lang="en"><div class="titlepage"><div><div><h4 class="title"><a name="id2551026"></a>Dissection and Discussion</h4></div></div></div><p>59 <a class="indexterm" name="id255 1034"></a>58 </p><div class="sect3" title="Dissection and Discussion"><div class="titlepage"><div><div><h4 class="title"><a name="id2557084"></a>Dissection and Discussion</h4></div></div></div><p> 59 <a class="indexterm" name="id2557092"></a> 60 60 The requirements for this server installation demand simplicity. An anonymous read-only 61 61 file server adequately meets all needs. The network consultant determines how … … 64 64 </p><p> 65 65 It is not necessary to have specific users on the server. The site has a method for storing 66 all design files (plans). Each plan is stored in a directory that is named YYYYWW,<sup>[<a name="id255 1054" href="#ftn.id2551054" class="footnote">2</a>]</sup> where66 all design files (plans). Each plan is stored in a directory that is named YYYYWW,<sup>[<a name="id2557112" href="#ftn.id2557112" class="footnote">2</a>]</sup> where 67 67 YYYY is the year, and WW is the week of the year. This arrangement allows work to be stored 68 68 by week of year to preserve the filing technique the site is familiar with. … … 74 74 demanding the disk space that would be needed if a duplicate file copy were to be stored. 75 75 The share containing the plans is called <span class="emphasis"><em>Plans</em></span>. 76 </p></div><div class="sect3" lang="en"><div class="titlepage"><div><div><h4 class="title"><a name="id2551082"></a>Implementation</h4></div></div></div><p>76 </p></div><div class="sect3" title="Implementation"><div class="titlepage"><div><div><h4 class="title"><a name="id2557141"></a>Implementation</h4></div></div></div><p> 77 77 It is assumed that the server is fully installed and ready for installation and 78 78 configuration of Samba 3.0.20 and any support files needed. All TCP/IP addresses … … 80 80 <code class="constant">192.168.1.1</code> and the netmask is <code class="constant">255.255.255.0</code>. 81 81 The hostname of the server used is <code class="constant">server</code>. 82 </p><div class="procedure" ><a name="id2551106"></a><p class="title"><b>Procedure 1.1. Samba Server Configuration</b></p><ol type="1"><li><p>82 </p><div class="procedure" title="Procedure 1.1. Samba Server Configuration"><a name="id2557164"></a><p class="title"><b>Procedure 1.1. Samba Server Configuration</b></p><ol class="procedure" type="1"><li class="step" title="Step 1"><p> 83 83 Download the Samba-3 RPM packages for Red Hat Fedora Core2 from the Samba 84 84 <a class="ulink" href="http://www.samba.org" target="_top">FTP servers.</a> 85 </p></li><li ><p>86 <a class="indexterm" name="id255 1129"></a>87 <a class="indexterm" name="id255 1138"></a>85 </p></li><li class="step" title="Step 2"><p> 86 <a class="indexterm" name="id2557188"></a> 87 <a class="indexterm" name="id2557196"></a> 88 88 Install the RPM package using either the Red Hat Linux preferred GUI 89 89 tool or the <code class="literal">rpm</code>: … … 91 91 <code class="prompt">root# </code> rpm -Uvh samba-3.0.20-1.i386.rpm 92 92 </pre><p> 93 </p></li><li ><p>93 </p></li><li class="step" title="Step 3"><p> 94 94 Create a mount point for the file system that will be used to store all data files. 95 95 You can create a directory called <code class="filename">/plans</code>: … … 101 101 and execute, and the group and everyone else to read and execute only. 102 102 </p><p> 103 <a class="indexterm" name="id255 1196"></a>103 <a class="indexterm" name="id2557255"></a> 104 104 Use Red Hat Linux system tools (refer to Red Hat instructions) 105 105 to format the 160GB hard drive with a suitable file system. An Ext3 file system 106 106 is suitable. Configure this drive to automatically mount using the <code class="filename">/plans</code> 107 107 directory as the mount point. 108 </p></li><li ><p>108 </p></li><li class="step" title="Step 4"><p> 109 109 Install the <code class="filename">smb.conf</code> file shown in <a class="link" href="simple.html#draft-smbconf" title="Example 1.1. Drafting Office smb.conf File">“Drafting Office smb.conf File”</a> in the 110 110 <code class="filename">/etc/samba</code> directory. 111 111 112 </p><div class="example"><a name="draft-smbconf"></a><p class="title"><b>Example 1.1. Drafting Office <code class="filename">smb.conf</code> File</b></p><div class="example-contents"><table class="simplelist" border="0" summary="Simple list"><tr><td># Global Parameters</td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[global]</code></em></td></tr><tr><td><a class="indexterm" name="id2551265"></a><em class="parameter"><code>workgroup = MIDEARTH</code></em></td></tr><tr><td><a class="indexterm" name="id2551275"></a><em class="parameter"><code>security = SHARE</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[Plans]</code></em></td></tr><tr><td><a class="indexterm" name="id2551294"></a><em class="parameter"><code>path = /plans</code></em></td></tr><tr><td><a class="indexterm" name="id2551304"></a><em class="parameter"><code>read only = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2551315"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr></table></div></div><p><br class="example-break">113 </p></li><li ><p>114 <a class="indexterm" name="id255 1333"></a>112 </p><div class="example"><a name="draft-smbconf"></a><p class="title"><b>Example 1.1. Drafting Office <code class="filename">smb.conf</code> File</b></p><div class="example-contents"><table border="0" summary="Simple list" class="simplelist"><tr><td># Global Parameters</td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[global]</code></em></td></tr><tr><td><a class="indexterm" name="id2557323"></a><em class="parameter"><code>workgroup = MIDEARTH</code></em></td></tr><tr><td><a class="indexterm" name="id2557334"></a><em class="parameter"><code>security = SHARE</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[Plans]</code></em></td></tr><tr><td><a class="indexterm" name="id2557352"></a><em class="parameter"><code>path = /plans</code></em></td></tr><tr><td><a class="indexterm" name="id2557363"></a><em class="parameter"><code>read only = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2557373"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr></table></div></div><p><br class="example-break"> 113 </p></li><li class="step" title="Step 5"><p> 114 <a class="indexterm" name="id2557391"></a> 115 115 Verify that the <code class="filename">/etc/hosts</code> file contains the following entry: 116 116 </p><pre class="screen"> … … 118 118 </pre><p> 119 119 120 </p></li><li ><p>121 <a class="indexterm" name="id255 1356"></a>122 <a class="indexterm" name="id255 1365"></a>123 <a class="indexterm" name="id255 1371"></a>120 </p></li><li class="step" title="Step 6"><p> 121 <a class="indexterm" name="id2557415"></a> 122 <a class="indexterm" name="id2557423"></a> 123 <a class="indexterm" name="id2557429"></a> 124 124 Use the standard system tool to start Samba and to configure it to restart 125 125 automatically at every system reboot. For example, … … 128 128 <code class="prompt">root# </code> /etc/rc.d/init.d/smb restart 129 129 </pre><p> 130 </p></li></ol></div><div class="procedure" ><a name="id2551397"></a><p class="title"><b>Procedure 1.2. Windows Client Configuration</b></p><ol type="1"><li><p>130 </p></li></ol></div><div class="procedure" title="Procedure 1.2. Windows Client Configuration"><a name="id2557456"></a><p class="title"><b>Procedure 1.2. Windows Client Configuration</b></p><ol class="procedure" type="1"><li class="step" title="Step 1"><p> 131 131 Make certain that all clients are set to the same network address range as 132 132 used for the Samba server. For example, one client might have an IP 133 133 address 192.168.1.10. 134 </p></li><li ><p>135 <a class="indexterm" name="id255 1417"></a>134 </p></li><li class="step" title="Step 2"><p> 135 <a class="indexterm" name="id2557476"></a> 136 136 Ensure that the netmask used on the Windows clients matches that used 137 137 for the Samba server. All clients must have the same netmask, such as 138 138 255.255.255.0. 139 </p></li><li ><p>140 <a class="indexterm" name="id255 1433"></a>139 </p></li><li class="step" title="Step 3"><p> 140 <a class="indexterm" name="id2557491"></a> 141 141 Set the workgroup name on all clients to <code class="constant">MIDEARTH</code>. 142 </p></li><li ><p>142 </p></li><li class="step" title="Step 4"><p> 143 143 Verify on each client that the machine called <code class="constant">SERVER</code> 144 144 is visible in the <span class="guimenu">Network Neighborhood</span>, that it is 145 145 possible to connect to it and see the share <span class="guimenuitem">Plans</span>, 146 146 and that it is possible to open that share to reveal its contents. 147 </p></li></ol></div></div><div class="sect3" lang="en"><div class="titlepage"><div><div><h4 class="title"><a name="validate1"></a>Validation</h4></div></div></div><p>148 <a class="indexterm" name="id255 1479"></a>147 </p></li></ol></div></div><div class="sect3" title="Validation"><div class="titlepage"><div><div><h4 class="title"><a name="validate1"></a>Validation</h4></div></div></div><p> 148 <a class="indexterm" name="id2557538"></a> 149 149 The first priority in validating the new Samba configuration should be to check 150 150 that Samba answers on the loop-back interface. Then it is time to check that Samba 151 151 answers its own name correctly. Last, check that a client can connect to the Samba 152 152 server. 153 </p><div class="procedure"><ol type="1"><li><p>154 <a class="indexterm" name="id255 1498"></a>155 <a class="indexterm" name="id255 1505"></a>156 <a class="indexterm" name="id255 1511"></a>153 </p><div class="procedure"><ol class="procedure" type="1"><li class="step" title="Step 1"><p> 154 <a class="indexterm" name="id2557557"></a> 155 <a class="indexterm" name="id2557563"></a> 156 <a class="indexterm" name="id2557569"></a> 157 157 To check the ability to access the <code class="literal">smbd</code> daemon 158 158 services, execute the following: … … 173 173 MIDEARTH SERVER 174 174 </pre><p> 175 <a class="indexterm" name="id255 1542"></a>176 <a class="indexterm" name="id255 1549"></a>175 <a class="indexterm" name="id2557601"></a> 176 <a class="indexterm" name="id2557607"></a> 177 177 This indicates that Samba is able to respond on the loopback interface to 178 178 a NULL connection. The <em class="parameter"><code>-U%</code></em> means send an empty 179 179 username and an empty password. This command should be repeated after 180 180 Samba has been running for 15 minutes. 181 </p></li><li ><p>181 </p></li><li class="step" title="Step 2"><p> 182 182 Now verify that Samba correctly handles being passed a username 183 183 and password, and that it answers its own name. Execute the following: … … 188 188 configured to ignore all usernames given; instead it uses the 189 189 <em class="parameter"><code>guest account</code></em> for all connections. 190 </p></li><li ><p>191 <a class="indexterm" name="id255 1598"></a>192 <a class="indexterm" name="id255 1605"></a>190 </p></li><li class="step" title="Step 3"><p> 191 <a class="indexterm" name="id2557657"></a> 192 <a class="indexterm" name="id2557663"></a> 193 193 From the Windows 9x/Me client, launch Windows Explorer: 194 194 <span class="guiicon">[Desktop: right-click] Network Neighborhood</span>+<span class="guimenu">Explore</span> → <span class="guimenuitem">[Left Panel] [+] Entire Network</span> → <span class="guimenuitem">[Left Panel] [+] Server</span> → <span class="guimenuitem">[Left Panel] [+] Plans</span>. In the right panel you should see the files and directories 195 195 (folders) that are in the <span class="guiicon">Plans</span> share. 196 </p></li></ol></div></div></div><div class="sect2" lang="en"><div class="titlepage"><div><div><h3 class="title"><a name="id2551655"></a>Charity Administration Office</h3></div></div></div><p>196 </p></li></ol></div></div></div><div class="sect2" title="Charity Administration Office"><div class="titlepage"><div><div><h3 class="title"><a name="id2557714"></a>Charity Administration Office</h3></div></div></div><p> 197 197 The fictitious charity organization is called <span class="emphasis"><em>Abmas Vision NL</em></span>. This office 198 198 has five networked computers. Staff are all volunteers, staff changes are frequent. … … 217 217 file share. 218 218 </p><p> 219 <a class="indexterm" name="id255 1718"></a>220 <a class="indexterm" name="id255 1724"></a>219 <a class="indexterm" name="id2557776"></a> 220 <a class="indexterm" name="id2557783"></a> 221 221 Printer handling in Samba results in a significant level of confusion. Samba presents to the 222 222 MS Windows client only a print queue. The Samba <code class="literal">smbd</code> process passes a … … 232 232 used on this network. 233 233 </p><p> 234 <a class="indexterm" name="id255 1757"></a>234 <a class="indexterm" name="id2557816"></a> 235 235 The central server was donated by a local computer store. It is a dual processor Pentium-III 236 236 server, has 1GB RAM, a 3-Ware IDE RAID Controller that has four 200GB IDE hard drives, and a … … 243 243 to the printers was accepted. You have supplied SUSE Enterprise Linux Server 9 and 244 244 have upgraded Samba to version 3.0.20. 245 </p><div class="sect3" lang="en"><div class="titlepage"><div><div><h4 class="title"><a name="id2551779"></a>Dissection and Discussion</h4></div></div></div><p>246 <a class="indexterm" name="id255 1787"></a>247 <a class="indexterm" name="id255 1793"></a>248 <a class="indexterm" name="id255 1799"></a>249 <a class="indexterm" name="id255 1806"></a>245 </p><div class="sect3" title="Dissection and Discussion"><div class="titlepage"><div><div><h4 class="title"><a name="id2557838"></a>Dissection and Discussion</h4></div></div></div><p> 246 <a class="indexterm" name="id2557845"></a> 247 <a class="indexterm" name="id2557851"></a> 248 <a class="indexterm" name="id2557858"></a> 249 <a class="indexterm" name="id2557864"></a> 250 250 This installation demands simplicity. Frequent turnover of volunteer staff indicates that 251 251 a network environment that requires users to logon might be problematic. It is suggested that the … … 259 259 an inadvertent ACL from overriding actual file permissions. 260 260 </p><p> 261 <a class="indexterm" name="id255 1845"></a>262 <a class="indexterm" name="id255 1851"></a>263 <a class="indexterm" name="id255 1857"></a>261 <a class="indexterm" name="id2557903"></a> 262 <a class="indexterm" name="id2557909"></a> 263 <a class="indexterm" name="id2557916"></a> 264 264 This organization is a prime candidate for Share Mode security. The <em class="parameter"><code>force user</code></em> 265 265 allows all files to be owned by the same user and group. In addition, it would not hurt to … … 268 268 For further information regarding the significance of the SUID/SGID settings, see <a class="link" href="appendix.html" title="Chapter 15. A Collection of Useful Tidbits">“A Collection of Useful Tidbits”</a>, <a class="link" href="appendix.html#ch12-SUIDSGID" title="Effect of Setting File and Directory SUID/SGID Permissions Explained">“Effect of Setting File and Directory SUID/SGID Permissions Explained”</a>. 269 269 </p><p> 270 <a class="indexterm" name="id255 1890"></a>271 <a class="indexterm" name="id255 1896"></a>272 <a class="indexterm" name="id255 1905"></a>273 <a class="indexterm" name="id255 1911"></a>270 <a class="indexterm" name="id2557948"></a> 271 <a class="indexterm" name="id2557955"></a> 272 <a class="indexterm" name="id2557963"></a> 273 <a class="indexterm" name="id2557969"></a> 274 274 All client workstations print to a print queue on the server. This ensures that print jobs 275 275 continue to print in the event that a user shuts down the workstation immediately after … … 278 278 that CUPS has become the leading UNIX printing technology. 279 279 </p><p> 280 <a class="indexterm" name="id255 1928"></a>280 <a class="indexterm" name="id2557986"></a> 281 281 The print queues are set up as <code class="constant">Raw</code> devices, which means that CUPS will 282 282 not do intelligent print processing, and vendor-supplied drivers must be installed locally on the … … 298 298 really is just a print queue. The name of the print queue is representative of 299 299 the device to which the print spooler delivers print jobs. 300 </p></div><div class="sect3" lang="en"><div class="titlepage"><div><div><h4 class="title"><a name="id2551974"></a>Implementation</h4></div></div></div><p>300 </p></div><div class="sect3" title="Implementation"><div class="titlepage"><div><div><h4 class="title"><a name="id2558033"></a>Implementation</h4></div></div></div><p> 301 301 It is assumed that the server is fully installed and ready for configuration of 302 302 Samba 3.0.20 and for necessary support files. All TCP/IP addresses should be hard-coded. … … 304 304 255.255.255.0. The hostname of the server used is <code class="constant">server</code>. 305 305 The office network is built as shown in <a class="link" href="simple.html#charitynet" title="Figure 1.1. Charity Administration Office Network">“Charity Administration Office Network”</a>. 306 </p><div class="figure"><a name="charitynet"></a><p class="title"><b>Figure 1.1. Charity Administration Office Network</b></p><div class="figure-contents"><div class="mediaobject"><img src="images/Charity-Network.png" width="432" alt="Charity Administration Office Network"></div></div></div><br class="figure-break"><div class="procedure" ><a name="id2552035"></a><p class="title"><b>Procedure 1.3. Samba Server Configuration</b></p><ol type="1"><li><p>307 <a class="indexterm" name="id255 2046"></a>306 </p><div class="figure"><a name="charitynet"></a><p class="title"><b>Figure 1.1. Charity Administration Office Network</b></p><div class="figure-contents"><div class="mediaobject"><img src="images/Charity-Network.png" width="432" alt="Charity Administration Office Network"></div></div></div><br class="figure-break"><div class="procedure" title="Procedure 1.3. Samba Server Configuration"><a name="id2558094"></a><p class="title"><b>Procedure 1.3. Samba Server Configuration</b></p><ol class="procedure" type="1"><li class="step" title="Step 1"><p> 307 <a class="indexterm" name="id2558104"></a> 308 308 Create a group account for office file storage: 309 309 </p><pre class="screen"> 310 310 <code class="prompt">root# </code> groupadd office 311 311 </pre><p> 312 </p></li><li ><p>313 <a class="indexterm" name="id255 2070"></a>314 <a class="indexterm" name="id255 2076"></a>312 </p></li><li class="step" title="Step 2"><p> 313 <a class="indexterm" name="id2558128"></a> 314 <a class="indexterm" name="id2558134"></a> 315 315 Create a user account for office file storage: 316 316 </p><pre class="screen"> … … 323 323 </pre><p> 324 324 where XXXXXXXX is a secret password. 325 </p></li><li ><p>325 </p></li><li class="step" title="Step 3"><p> 326 326 Use the 3-Ware IDE RAID Controller firmware utilities to configure the four 200GB 327 327 drives as a single RAID level 5 drive, with one drive set aside as the hot spare. 328 328 (Refer to the 3-Ware RAID Controller Manual for the manufacturer's preferred procedure.) 329 329 The resulting drive has a capacity of approximately 500GB of usable space. 330 </p></li><li ><p>331 <a class="indexterm" name="id255 2120"></a>330 </p></li><li class="step" title="Step 4"><p> 331 <a class="indexterm" name="id2558179"></a> 332 332 Create a mount point for the file system that can be used to store all data files. 333 333 Create a directory called <code class="filename">/data</code>: … … 338 338 The 755 permissions on this directory (mount point) permit the owner to read, write, and execute, 339 339 and the group and everyone else to read and execute only. 340 </p></li><li ><p>340 </p></li><li class="step" title="Step 5"><p> 341 341 Use SUSE Linux system tools (refer to the SUSE Administrators Guide for correct 342 342 procedures) to format the partition with a suitable file system. The reiserfs file system 343 343 is suitable. Configure this drive to automount using the <code class="filename">/data</code> 344 344 directory as the mount point. It must be mounted before proceeding. 345 </p></li><li ><p>345 </p></li><li class="step" title="Step 6"><p> 346 346 Under the directory called <code class="filename">/data</code>, create two directories 347 347 named <code class="filename">ftmfiles</code> and <code class="filename">officefiles</code>, and set … … 361 361 /data/officefiles/misc 362 362 </pre><p> 363 <a class="indexterm" name="id255 2229"></a>363 <a class="indexterm" name="id2558287"></a> 364 364 The <code class="literal">chown</code> operation sets the owner to the user <code class="constant">abmas</code> 365 365 and the group to <code class="constant">office</code> on all directories just created. It recursively … … 369 369 created. Any new directories created still have the same owner, group, and permissions as the 370 370 directory they are in. This should eliminate all permissions-based file access problems. For 371 more information on this subject, refer to TOSHARG2<sup>[<a name="id255 2257" href="#ftn.id2552257" class="footnote">3</a>]</sup> or refer371 more information on this subject, refer to TOSHARG2<sup>[<a name="id2558316" href="#ftn.id2558316" class="footnote">3</a>]</sup> or refer 372 372 to the UNIX man page for the <code class="literal">chmod</code> and the <code class="literal">chown</code> commands. 373 </p></li><li ><p>373 </p></li><li class="step" title="Step 7"><p> 374 374 Install the <code class="filename">smb.conf</code> file shown in <a class="link" href="simple.html#charity-smbconfnew" title="Example 1.2. Charity Administration Office smb.conf New-style File">“Charity Administration Office smb.conf New-style File”</a> in the 375 375 <code class="filename">/etc/samba</code> directory. This newer <code class="filename">smb.conf</code> file uses user-mode security … … 380 380 can install the file shown in <a class="link" href="simple.html#charity-smbconf" title="Example 1.3. Charity Administration Office smb.conf Old-style File">“Charity Administration Office smb.conf Old-style File”</a> in the 381 381 <code class="filename">/etc/samba</code> directory. 382 </p></li><li ><p>383 <a class="indexterm" name="id255 2324"></a>382 </p></li><li class="step" title="Step 8"><p> 383 <a class="indexterm" name="id2558382"></a> 384 384 We must ensure that the <code class="literal">smbd</code> can resolve the name of the Samba 385 385 server to its IP address. Verify that the <code class="filename">/etc/hosts</code> file … … 388 388 192.168.1.1 server 389 389 </pre><p> 390 </p></li><li ><p>390 </p></li><li class="step" title="Step 9"><p> 391 391 Configure the printers with the IP address as shown in <a class="link" href="simple.html#charitynet" title="Figure 1.1. Charity Administration Office Network">“Charity Administration Office Network”</a>. 392 392 Follow the instructions in the manufacturer's manual to permit printing to port 9100 393 393 so that the CUPS spooler can print using raw mode protocols. 394 </p></li><li ><p>395 <a class="indexterm" name="id255 2369"></a>394 </p></li><li class="step" title="Step 10"><p> 395 <a class="indexterm" name="id2558427"></a> 396 396 Configure the CUPS Print Queues: 397 397 </p><pre class="screen"> … … 400 400 </pre><p> 401 401 This creates the necessary print queues with no assigned print filter. 402 </p></li><li ><p>403 <a class="indexterm" name="id255 2401"></a>404 <a class="indexterm" name="id255 2408"></a>405 <a class="indexterm" name="id255 2414"></a>402 </p></li><li class="step" title="Step 11"><p> 403 <a class="indexterm" name="id2558460"></a> 404 <a class="indexterm" name="id2558466"></a> 405 <a class="indexterm" name="id2558472"></a> 406 406 Edit the file <code class="filename">/etc/cups/mime.convs</code> to uncomment the line: 407 407 </p><pre class="screen"> 408 408 application/octet-stream application/vnd.cups-raw 0 - 409 409 </pre><p> 410 </p></li><li ><p>411 <a class="indexterm" name="id255 2438"></a>410 </p></li><li class="step" title="Step 12"><p> 411 <a class="indexterm" name="id2558496"></a> 412 412 Edit the file <code class="filename">/etc/cups/mime.types</code> to uncomment the line: 413 413 </p><pre class="screen"> 414 414 application/octet-stream 415 415 </pre><p> 416 </p></li><li ><p>417 <a class="indexterm" name="id255 2461"></a>416 </p></li><li class="step" title="Step 13"><p> 417 <a class="indexterm" name="id2558519"></a> 418 418 Use the standard system tool to start Samba and CUPS to configure them to restart 419 419 automatically at every system reboot. For example, 420 420 </p><p> 421 <a class="indexterm" name="id255 2473"></a>422 <a class="indexterm" name="id255 2479"></a>423 <a class="indexterm" name="id255 2486"></a>421 <a class="indexterm" name="id2558531"></a> 422 <a class="indexterm" name="id2558538"></a> 423 <a class="indexterm" name="id2558544"></a> 424 424 </p><pre class="screen"> 425 425 <code class="prompt">root# </code> chkconfig smb on … … 428 428 <code class="prompt">root# </code> /etc/rc.d/init.d/cups restart 429 429 </pre><p> 430 </p></li></ol></div><div class="example"><a name="charity-smbconfnew"></a><p class="title"><b>Example 1.2. Charity Administration Office <code class="filename">smb.conf</code> New-style File</b></p><div class="example-contents"><table class="simplelist" border="0" summary="Simple list"><tr><td># Global Parameters - Newer Configuration</td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[global]</code></em></td></tr><tr><td><a class="indexterm" name="id2552550"></a><em class="parameter"><code>workgroup = MIDEARTH</code></em></td></tr><tr><td><a class="indexterm" name="id2552560"></a><em class="parameter"><code>printing = CUPS</code></em></td></tr><tr><td><a class="indexterm" name="id2552571"></a><em class="parameter"><code>printcap name = CUPS</code></em></td></tr><tr><td><a class="indexterm" name="id2552581"></a><em class="parameter"><code>map to guest = Bad User</code></em></td></tr><tr><td><a class="indexterm" name="id2552592"></a><em class="parameter"><code>show add printer wizard = No</code></em></td></tr><tr><td><a class="indexterm" name="id2552602"></a><em class="parameter"><code>wins support = yes</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[FTMFILES]</code></em></td></tr><tr><td><a class="indexterm" name="id2552621"></a><em class="parameter"><code>comment = Funds Tracking & Management Files</code></em></td></tr><tr><td><a class="indexterm" name="id2552632"></a><em class="parameter"><code>path = /data/ftmfiles</code></em></td></tr><tr><td><a class="indexterm" name="id2552643"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td><a class="indexterm" name="id2552653"></a><em class="parameter"><code>force user = abmas</code></em></td></tr><tr><td><a class="indexterm" name="id2552664"></a><em class="parameter"><code>force group = office</code></em></td></tr><tr><td><a class="indexterm" name="id2552674"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2552684"></a><em class="parameter"><code>nt acl support = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[office]</code></em></td></tr><tr><td><a class="indexterm" name="id2552703"></a><em class="parameter"><code>comment = General Office Files</code></em></td></tr><tr><td><a class="indexterm" name="id2552714"></a><em class="parameter"><code>path = /data/officefiles</code></em></td></tr><tr><td><a class="indexterm" name="id2552724"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td><a class="indexterm" name="id2552734"></a><em class="parameter"><code>force user = abmas</code></em></td></tr><tr><td><a class="indexterm" name="id2552745"></a><em class="parameter"><code>force group = office</code></em></td></tr><tr><td><a class="indexterm" name="id2552755"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2552766"></a><em class="parameter"><code>nt acl support = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[printers]</code></em></td></tr><tr><td><a class="indexterm" name="id2552784"></a><em class="parameter"><code>comment = Print Temporary Spool Configuration</code></em></td></tr><tr><td><a class="indexterm" name="id2552796"></a><em class="parameter"><code>path = /var/spool/samba</code></em></td></tr><tr><td><a class="indexterm" name="id2552806"></a><em class="parameter"><code>printable = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2552816"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2552827"></a><em class="parameter"><code>use client driver = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2552837"></a><em class="parameter"><code>browseable = No</code></em></td></tr></table></div></div><br class="example-break"><div class="example"><a name="charity-smbconf"></a><p class="title"><b>Example 1.3. Charity Administration Office <code class="filename">smb.conf</code> Old-style File</b></p><div class="example-contents"><table class="simplelist" border="0" summary="Simple list"><tr><td># Global Parameters - Older Style Configuration</td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[global]</code></em></td></tr><tr><td><a class="indexterm" name="id2552879"></a><em class="parameter"><code>workgroup = MIDEARTH</code></em></td></tr><tr><td><a class="indexterm" name="id2552889"></a><em class="parameter"><code>security = SHARE</code></em></td></tr><tr><td><a class="indexterm" name="id2552900"></a><em class="parameter"><code>printing = CUPS</code></em></td></tr><tr><td><a class="indexterm" name="id2552910"></a><em class="parameter"><code>printcap name = CUPS</code></em></td></tr><tr><td><a class="indexterm" name="id2552921"></a><em class="parameter"><code>disable spoolss = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2552931"></a><em class="parameter"><code>show add printer wizard = No</code></em></td></tr><tr><td><a class="indexterm" name="id2552941"></a><em class="parameter"><code>wins support = yes</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[FTMFILES]</code></em></td></tr><tr><td><a class="indexterm" name="id2552960"></a><em class="parameter"><code>comment = Funds Tracking & Management Files</code></em></td></tr><tr><td><a class="indexterm" name="id2552972"></a><em class="parameter"><code>path = /data/ftmfiles</code></em></td></tr><tr><td><a class="indexterm" name="id2552982"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td><a class="indexterm" name="id2552992"></a><em class="parameter"><code>force user = abmas</code></em></td></tr><tr><td><a class="indexterm" name="id2553003"></a><em class="parameter"><code>force group = office</code></em></td></tr><tr><td><a class="indexterm" name="id2553013"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2553024"></a><em class="parameter"><code>nt acl support = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[office]</code></em></td></tr><tr><td><a class="indexterm" name="id2553042"></a><em class="parameter"><code>comment = General Office Files</code></em></td></tr><tr><td><a class="indexterm" name="id2553053"></a><em class="parameter"><code>path = /data/officefiles</code></em></td></tr><tr><td><a class="indexterm" name="id2553063"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td><a class="indexterm" name="id2553074"></a><em class="parameter"><code>force user = abmas</code></em></td></tr><tr><td><a class="indexterm" name="id2553084"></a><em class="parameter"><code>force group = office</code></em></td></tr><tr><td><a class="indexterm" name="id2553094"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2553105"></a><em class="parameter"><code>nt acl support = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[printers]</code></em></td></tr><tr><td><a class="indexterm" name="id2553124"></a><em class="parameter"><code>comment = Print Temporary Spool Configuration</code></em></td></tr><tr><td><a class="indexterm" name="id2553135"></a><em class="parameter"><code>path = /var/spool/samba</code></em></td></tr><tr><td><a class="indexterm" name="id2553145"></a><em class="parameter"><code>printable = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2553156"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2553166"></a><em class="parameter"><code>use client driver = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2553177"></a><em class="parameter"><code>browseable = No</code></em></td></tr></table></div></div><br class="example-break"><div class="procedure"><a name="id2553188"></a><p class="title"><b>Procedure 1.4. Windows Client Configuration</b></p><ol type="1"><li><p>430 </p></li></ol></div><div class="example"><a name="charity-smbconfnew"></a><p class="title"><b>Example 1.2. Charity Administration Office <code class="filename">smb.conf</code> New-style File</b></p><div class="example-contents"><table border="0" summary="Simple list" class="simplelist"><tr><td># Global Parameters - Newer Configuration</td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[global]</code></em></td></tr><tr><td><a class="indexterm" name="id2558608"></a><em class="parameter"><code>workgroup = MIDEARTH</code></em></td></tr><tr><td><a class="indexterm" name="id2558619"></a><em class="parameter"><code>printing = CUPS</code></em></td></tr><tr><td><a class="indexterm" name="id2558629"></a><em class="parameter"><code>printcap name = CUPS</code></em></td></tr><tr><td><a class="indexterm" name="id2558640"></a><em class="parameter"><code>map to guest = Bad User</code></em></td></tr><tr><td><a class="indexterm" name="id2558650"></a><em class="parameter"><code>show add printer wizard = No</code></em></td></tr><tr><td><a class="indexterm" name="id2558660"></a><em class="parameter"><code>wins support = yes</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[FTMFILES]</code></em></td></tr><tr><td><a class="indexterm" name="id2558679"></a><em class="parameter"><code>comment = Funds Tracking & Management Files</code></em></td></tr><tr><td><a class="indexterm" name="id2558691"></a><em class="parameter"><code>path = /data/ftmfiles</code></em></td></tr><tr><td><a class="indexterm" name="id2558701"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td><a class="indexterm" name="id2558712"></a><em class="parameter"><code>force user = abmas</code></em></td></tr><tr><td><a class="indexterm" name="id2558722"></a><em class="parameter"><code>force group = office</code></em></td></tr><tr><td><a class="indexterm" name="id2558732"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2558743"></a><em class="parameter"><code>nt acl support = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[office]</code></em></td></tr><tr><td><a class="indexterm" name="id2558762"></a><em class="parameter"><code>comment = General Office Files</code></em></td></tr><tr><td><a class="indexterm" name="id2558772"></a><em class="parameter"><code>path = /data/officefiles</code></em></td></tr><tr><td><a class="indexterm" name="id2558782"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td><a class="indexterm" name="id2558793"></a><em class="parameter"><code>force user = abmas</code></em></td></tr><tr><td><a class="indexterm" name="id2558803"></a><em class="parameter"><code>force group = office</code></em></td></tr><tr><td><a class="indexterm" name="id2558814"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2558824"></a><em class="parameter"><code>nt acl support = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[printers]</code></em></td></tr><tr><td><a class="indexterm" name="id2558843"></a><em class="parameter"><code>comment = Print Temporary Spool Configuration</code></em></td></tr><tr><td><a class="indexterm" name="id2558854"></a><em class="parameter"><code>path = /var/spool/samba</code></em></td></tr><tr><td><a class="indexterm" name="id2558864"></a><em class="parameter"><code>printable = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2558875"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2558885"></a><em class="parameter"><code>use client driver = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2558896"></a><em class="parameter"><code>browseable = No</code></em></td></tr></table></div></div><br class="example-break"><div class="example"><a name="charity-smbconf"></a><p class="title"><b>Example 1.3. Charity Administration Office <code class="filename">smb.conf</code> Old-style File</b></p><div class="example-contents"><table border="0" summary="Simple list" class="simplelist"><tr><td># Global Parameters - Older Style Configuration</td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[global]</code></em></td></tr><tr><td><a class="indexterm" name="id2558937"></a><em class="parameter"><code>workgroup = MIDEARTH</code></em></td></tr><tr><td><a class="indexterm" name="id2558948"></a><em class="parameter"><code>security = SHARE</code></em></td></tr><tr><td><a class="indexterm" name="id2558958"></a><em class="parameter"><code>printing = CUPS</code></em></td></tr><tr><td><a class="indexterm" name="id2558969"></a><em class="parameter"><code>printcap name = CUPS</code></em></td></tr><tr><td><a class="indexterm" name="id2558979"></a><em class="parameter"><code>disable spoolss = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2558989"></a><em class="parameter"><code>show add printer wizard = No</code></em></td></tr><tr><td><a class="indexterm" name="id2559000"></a><em class="parameter"><code>wins support = yes</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[FTMFILES]</code></em></td></tr><tr><td><a class="indexterm" name="id2559019"></a><em class="parameter"><code>comment = Funds Tracking & Management Files</code></em></td></tr><tr><td><a class="indexterm" name="id2559030"></a><em class="parameter"><code>path = /data/ftmfiles</code></em></td></tr><tr><td><a class="indexterm" name="id2559040"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td><a class="indexterm" name="id2559051"></a><em class="parameter"><code>force user = abmas</code></em></td></tr><tr><td><a class="indexterm" name="id2559061"></a><em class="parameter"><code>force group = office</code></em></td></tr><tr><td><a class="indexterm" name="id2559072"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2559082"></a><em class="parameter"><code>nt acl support = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[office]</code></em></td></tr><tr><td><a class="indexterm" name="id2559101"></a><em class="parameter"><code>comment = General Office Files</code></em></td></tr><tr><td><a class="indexterm" name="id2559111"></a><em class="parameter"><code>path = /data/officefiles</code></em></td></tr><tr><td><a class="indexterm" name="id2559122"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td><a class="indexterm" name="id2559132"></a><em class="parameter"><code>force user = abmas</code></em></td></tr><tr><td><a class="indexterm" name="id2559142"></a><em class="parameter"><code>force group = office</code></em></td></tr><tr><td><a class="indexterm" name="id2559153"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2559163"></a><em class="parameter"><code>nt acl support = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[printers]</code></em></td></tr><tr><td><a class="indexterm" name="id2559182"></a><em class="parameter"><code>comment = Print Temporary Spool Configuration</code></em></td></tr><tr><td><a class="indexterm" name="id2559193"></a><em class="parameter"><code>path = /var/spool/samba</code></em></td></tr><tr><td><a class="indexterm" name="id2559204"></a><em class="parameter"><code>printable = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2559214"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2559225"></a><em class="parameter"><code>use client driver = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2559235"></a><em class="parameter"><code>browseable = No</code></em></td></tr></table></div></div><br class="example-break"><div class="procedure" title="Procedure 1.4. Windows Client Configuration"><a name="id2559246"></a><p class="title"><b>Procedure 1.4. Windows Client Configuration</b></p><ol class="procedure" type="1"><li class="step" title="Step 1"><p> 431 431 Configure clients to the network settings shown in <a class="link" href="simple.html#charitynet" title="Figure 1.1. Charity Administration Office Network">“Charity Administration Office Network”</a>. 432 </p></li><li ><p>432 </p></li><li class="step" title="Step 2"><p> 433 433 Ensure that the netmask used on the Windows clients matches that used 434 434 for the Samba server. All clients must have the same netmask, such as 435 435 <code class="constant">255.255.255.0</code>. 436 </p></li><li ><p>437 <a class="indexterm" name="id255 3222"></a>436 </p></li><li class="step" title="Step 3"><p> 437 <a class="indexterm" name="id2559281"></a> 438 438 On all Windows clients, set the WINS Server address to <code class="constant">192.168.1.1</code>, 439 439 the IP address of the server. 440 </p></li><li ><p>440 </p></li><li class="step" title="Step 4"><p> 441 441 Set the workgroup name on all clients to <code class="constant">MIDEARTH</code>. 442 </p></li><li ><p>443 <a class="indexterm" name="id255 3250"></a>444 Install the “<span class="quote">Client for Microsoft Networks.</span>”Ensure that the only option445 enabled in its properties is the option “<span class="quote">Logon and restore network connections.</span>”446 </p></li><li ><p>442 </p></li><li class="step" title="Step 5"><p> 443 <a class="indexterm" name="id2559309"></a> 444 Install the <span class="quote">“<span class="quote">Client for Microsoft Networks.</span>”</span> Ensure that the only option 445 enabled in its properties is the option <span class="quote">“<span class="quote">Logon and restore network connections.</span>”</span> 446 </p></li><li class="step" title="Step 6"><p> 447 447 Click <span class="guibutton">OK</span> when you are prompted to reboot the system. Reboot the 448 448 system, then log on using any username and password you choose. 449 </p></li><li ><p>450 <a class="indexterm" name="id255 3285"></a>449 </p></li><li class="step" title="Step 7"><p> 450 <a class="indexterm" name="id2559344"></a> 451 451 Verify on each client that the machine called <code class="constant">SERVER</code> 452 452 is visible in <span class="guimenu">My Network Places</span>, that it is 453 453 possible to connect to it and see the share <span class="guimenuitem">office</span>, 454 454 and that it is possible to open that share to reveal its contents. 455 </p></li><li ><p>456 <a class="indexterm" name="id255 3315"></a>457 <a class="indexterm" name="id255 3321"></a>455 </p></li><li class="step" title="Step 8"><p> 456 <a class="indexterm" name="id2559373"></a> 457 <a class="indexterm" name="id2559380"></a> 458 458 Disable password caching on all Windows 9x/Me machines using the registry change file 459 459 shown in <a class="link" href="simple.html#MEreg" title="Example 1.4. Windows Me Registry Edit File: Disable Password Caching">“Windows Me Registry Edit File: Disable Password Caching”</a>. Be sure to remove all files that have the … … 472 472 C:\WINDOWS: regedit ME-dpwc.reg 473 473 </pre><p> 474 </p></li><li ><p>474 </p></li><li class="step" title="Step 9"><p> 475 475 Instruct all users to log onto the workstation using a name and password of their own 476 476 choosing. The Samba server has been 477 477 configured to ignore the username and password given. 478 </p></li><li ><p>478 </p></li><li class="step" title="Step 10"><p> 479 479 On each Windows Me workstation, configure a network drive mapping to drive <code class="filename">G:</code> 480 480 that redirects to the uniform naming convention (UNC) resource 481 481 <code class="filename">\\server\office</code>. Make this a permanent drive connection: 482 </p><div class="procedure"><ol type="1"><li><p>482 </p><div class="procedure"><ol class="procedure" type="1"><li class="step" title="Step 10.1"><p> 483 483 <span class="guimenu">My Network</span> → <span class="guimenuitem">Map Network Drive...</span> 484 </p></li><li ><p>485 In the box labeled “<span class="quote">Drive:</span>”, type G.486 </p></li><li ><p>487 In the box labeled “<span class="quote">Path:</span>”, enter484 </p></li><li class="step" title="Step 10.2"><p> 485 In the box labeled <span class="quote">“<span class="quote">Drive:</span>”</span>, type G. 486 </p></li><li class="step" title="Step 10.3"><p> 487 In the box labeled <span class="quote">“<span class="quote">Path:</span>”</span>, enter 488 488 <code class="filename">\\server\officefiles</code>. 489 </p></li><li ><p>489 </p></li><li class="step" title="Step 10.4"><p> 490 490 Click <span class="guimenuitem">Reconnect at logon</span>. 491 491 Click <span class="guibutton">OK</span>. 492 </p></li></ol></div></li><li ><p>492 </p></li></ol></div></li><li class="step" title="Step 11"><p> 493 493 On each workstation, install the FTM software following the 494 494 manufacturer's instructions. 495 </p><div class="procedure"><ol type="1"><li><p>495 </p><div class="procedure"><ol class="procedure" type="1"><li class="step" title="Step 11.1"><p> 496 496 During installation, you are prompted for the name of the Windows 98 497 497 server. Enter the name <code class="constant">SERVER</code>. 498 </p></li><li ><p>498 </p></li><li class="step" title="Step 11.2"><p> 499 499 You are prompted for the name of the data share. 500 500 The prompt defaults to <code class="constant">FTMFILES</code>. Press enter to accept the default value. 501 </p></li><li ><p>501 </p></li><li class="step" title="Step 11.3"><p> 502 502 You are now prompted for the print queue name. The default prompt is the name of 503 503 the server you entered (<code class="constant">SERVER</code> as follows: 504 504 <code class="constant">\\SERVER\PRINTQ</code>). Simply accept the default and press enter to 505 505 continue. The software now completes the installation. 506 </p></li></ol></div></li><li ><p>506 </p></li></ol></div></li><li class="step" title="Step 12"><p> 507 507 Install an office automation software package of the customer's choice. Either Microsoft 508 508 Office 2003 Standard or OpenOffice 1.1.0 suffices for any functions the office may 509 509 need to perform. Repeat this on each workstation. 510 </p></li><li ><p>510 </p></li><li class="step" title="Step 13"><p> 511 511 Install a printer on each workstation using the following steps: 512 </p><div class="procedure"><ol type="1"><li><p>512 </p><div class="procedure"><ol class="procedure" type="1"><li class="step" title="Step 13.1"><p> 513 513 Click <span class="guimenu">Start</span> → <span class="guimenuitem">Settings</span> → <span class="guimenuitem">Printers</span>+<span class="guiicon">Add Printer</span>+<span class="guibutton">Next</span>. Do not click <span class="guimenuitem">Network printer</span>. 514 514 Ensure that <span class="guimenuitem">Local printer</span> is selected. 515 </p></li><li ><p>515 </p></li><li class="step" title="Step 13.2"><p> 516 516 Click <span class="guibutton">Next</span>. In the Manufacturer: panel, select 517 517 <code class="constant">HP</code>. In the Printers: panel, select the printer called 518 518 <code class="constant">HP LaserJet 5/5M Postscript</code>. Click <span class="guibutton">Next</span>. 519 </p></li><li ><p>519 </p></li><li class="step" title="Step 13.3"><p> 520 520 In the Available ports: panel, select <code class="constant">FILE:</code>. Accept the 521 521 default printer name by clicking <span class="guibutton">Next</span>. When asked, 522 “<span class="quote">Would you like to print a test page?</span>”, click522 <span class="quote">“<span class="quote">Would you like to print a test page?</span>”</span>, click 523 523 <span class="guimenuitem">No</span>. Click <span class="guibutton">Finish</span>. 524 </p></li><li ><p>524 </p></li><li class="step" title="Step 13.4"><p> 525 525 You may be prompted for the name of a file to print to. If so, close the 526 526 dialog panel. Right-click <span class="guiicon">HP LaserJet 5/5M Postscript</span> → <span class="guimenuitem">Properties</span> → <span class="guisubmenu">Details (Tab)</span> → <span class="guimenuitem">Add Port</span>. 527 </p></li><li ><p>527 </p></li><li class="step" title="Step 13.5"><p> 528 528 In the Network panel, enter the name of 529 529 the print queue on the Samba server as follows: <code class="constant">\\SERVER\hplj5</code>. 530 530 Click <span class="guibutton">OK</span>+<span class="guibutton">OK</span> to complete the installation. 531 </p></li><li ><p>531 </p></li><li class="step" title="Step 13.6"><p> 532 532 It is a good idea to test the functionality of the complete installation before 533 533 handing the newly configured network over to the Charity Administration Office 534 534 for production use. 535 </p></li></ol></div></li></ol></div></div><div class="sect3" lang="en"><div class="titlepage"><div><div><h4 class="title"><a name="id2553727"></a>Validation</h4></div></div></div><p>535 </p></li></ol></div></li></ol></div></div><div class="sect3" title="Validation"><div class="titlepage"><div><div><h4 class="title"><a name="id2559785"></a>Validation</h4></div></div></div><p> 536 536 Use the same validation process as was followed in <a class="link" href="simple.html#validate1" title="Validation">“Validation”</a>. 537 </p></div></div><div class="sect2" lang="en"><div class="titlepage"><div><div><h3 class="title"><a name="AccountingOffice"></a>Accounting Office</h3></div></div></div><p>537 </p></div></div><div class="sect2" title="Accounting Office"><div class="titlepage"><div><div><h3 class="title"><a name="AccountingOffice"></a>Accounting Office</h3></div></div></div><p> 538 538 Abmas Accounting is a 40-year-old family-run business. There are nine permanent 539 539 computer users. The network clients were upgraded two years ago. All computers run Windows 2000 … … 552 552 on the server. 553 553 </p><p> 554 <a class="indexterm" name="id255 3790"></a>554 <a class="indexterm" name="id2559849"></a> 555 555 The new server will run Red Hat Fedora Core2. You should install Samba-3.0.20 and 556 556 copy all files from the old system to the new one. The existing Windows NT4 server has a parallel 557 557 port HP LaserJet 4 printer that is shared by all. The printer driver is installed on each 558 558 workstation. You must not change anything on the workstations. Mr. Meany gave instructions to 559 replace the server, “<span class="quote">but leave everything else alone to avoid staff unrest.</span>”559 replace the server, <span class="quote">“<span class="quote">but leave everything else alone to avoid staff unrest.</span>”</span> 560 560 </p><p> 561 561 You have tried to educate Mr. Meany and found that he has no desire to understand networking. 562 He believes that Windows for Workgroups 3.11 was “<span class="quote">the best server Microsoft ever sold563 </span>” and that Windows NT and 2000 are “<span class="quote">too fang-dangled complex!</span>”564 </p><div class="sect3" lang="en"><div class="titlepage"><div><div><h4 class="title"><a name="id2553821"></a>Dissection and Discussion</h4></div></div></div><p>565 <a class="indexterm" name="id255 3829"></a>562 He believes that Windows for Workgroups 3.11 was <span class="quote">“<span class="quote">the best server Microsoft ever sold 563 </span>”</span> and that Windows NT and 2000 are <span class="quote">“<span class="quote">too fang-dangled complex!</span>”</span> 564 </p><div class="sect3" title="Dissection and Discussion"><div class="titlepage"><div><div><h4 class="title"><a name="id2559880"></a>Dissection and Discussion</h4></div></div></div><p> 565 <a class="indexterm" name="id2559887"></a> 566 566 The requirements of this network installation are not unusual. The staff are not interested in the 567 567 details of networking. Passwords are never changed. In this example solution, we demonstrate the use … … 574 574 You have finished configuring the new hardware and have just completed installation of Red Hat 575 575 Fedora Core2. Roll up your sleeves and let's get to work. 576 </p></div><div class="sect3" lang="en"><div class="titlepage"><div><div><h4 class="title"><a name="AcctgNet"></a>Implementation</h4></div></div></div><p>576 </p></div><div class="sect3" title="Implementation"><div class="titlepage"><div><div><h4 class="title"><a name="AcctgNet"></a>Implementation</h4></div></div></div><p> 577 577 The workstations have fixed IP addresses. The old server runs Windows NT4 Workstation, so it 578 578 cannot be running as a WINS server. It is best that the new configuration preserves the same … … 583 583 <a class="link" href="simple.html#acctingnet2" title="Figure 1.2. Accounting Office Network Topology">“Accounting Office Network Topology”</a>. All machines have been configured as indicated prior to the 584 584 start of Samba configuration. The following prescriptive steps may now commence. 585 </p><div class="figure"><a name="acctingnet2"></a><p class="title"><b>Figure 1.2. Accounting Office Network Topology</b></p><div class="figure-contents"><div class="mediaobject"><img src="images/AccountingNetwork.png" width="459" alt="Accounting Office Network Topology"></div></div></div><br class="figure-break"><div class="table"><a name="acctingnet"></a><p class="title"><b>Table 1.1. Accounting Office Network Information</b></p><div class="table-contents"><table summary="Accounting Office Network Information" border="1"><colgroup><col align="left"><col align="left"><col align="left"><col align="left"><col align="left"><col align="left"></colgroup><thead><tr><th align="left">User</th><th align="left">Login-ID</th><th align="left">Password</th><th align="left">Share Name</th><th align="left">Directory</th><th align="left">Wkst</th></tr></thead><tbody><tr><td align="left">Alan Meany</td><td align="left">alan</td><td align="left">alm1961</td><td align="left">alan</td><td align="left">/data</td><td align="left">PC1</td></tr><tr><td align="left">James Meany</td><td align="left">james</td><td align="left">jimm1962</td><td align="left">james</td><td align="left">/data/james</td><td align="left">PC2</td></tr><tr><td align="left">Jeannie Meany</td><td align="left">jeannie</td><td align="left">jema1965</td><td align="left">jeannie</td><td align="left">/data/jeannie</td><td align="left">PC3</td></tr><tr><td align="left">Suzy Millicent</td><td align="left">suzy</td><td align="left">suzy1967</td><td align="left">suzy</td><td align="left">/data/suzy</td><td align="left">PC4</td></tr><tr><td align="left">Ursula Jenning</td><td align="left">ujen</td><td align="left">ujen1974</td><td align="left">ursula</td><td align="left">/data/ursula</td><td align="left">PC5</td></tr><tr><td align="left">Peter Pan</td><td align="left">peter</td><td align="left">pete1984</td><td align="left">peter</td><td align="left">/data/peter</td><td align="left">PC6</td></tr><tr><td align="left">Dale Roland</td><td align="left">dale</td><td align="left">dale1986</td><td align="left">dale</td><td align="left">/data/dale</td><td align="left">PC7</td></tr><tr><td align="left">Bertrand E Paoletti</td><td align="left">eric</td><td align="left">eric1993</td><td align="left">eric</td><td align="left">/data/eric</td><td align="left">PC8</td></tr><tr><td align="left">Russell Lewis</td><td align="left">russ</td><td align="left">russ2001</td><td align="left">russell</td><td align="left">/data/russell</td><td align="left">PC9</td></tr></tbody></table></div></div><br class="table-break"><div class="procedure" ><a name="id2554200"></a><p class="title"><b>Procedure 1.5. Migration from Windows NT4 Workstation System to Samba-3</b></p><ol type="1"><li><p><a class="indexterm" name="id2554210"></a>585 </p><div class="figure"><a name="acctingnet2"></a><p class="title"><b>Figure 1.2. Accounting Office Network Topology</b></p><div class="figure-contents"><div class="mediaobject"><img src="images/AccountingNetwork.png" width="459" alt="Accounting Office Network Topology"></div></div></div><br class="figure-break"><div class="table"><a name="acctingnet"></a><p class="title"><b>Table 1.1. Accounting Office Network Information</b></p><div class="table-contents"><table summary="Accounting Office Network Information" border="1"><colgroup><col align="left"><col align="left"><col align="left"><col align="left"><col align="left"><col align="left"></colgroup><thead><tr><th align="left">User</th><th align="left">Login-ID</th><th align="left">Password</th><th align="left">Share Name</th><th align="left">Directory</th><th align="left">Wkst</th></tr></thead><tbody><tr><td align="left">Alan Meany</td><td align="left">alan</td><td align="left">alm1961</td><td align="left">alan</td><td align="left">/data</td><td align="left">PC1</td></tr><tr><td align="left">James Meany</td><td align="left">james</td><td align="left">jimm1962</td><td align="left">james</td><td align="left">/data/james</td><td align="left">PC2</td></tr><tr><td align="left">Jeannie Meany</td><td align="left">jeannie</td><td align="left">jema1965</td><td align="left">jeannie</td><td align="left">/data/jeannie</td><td align="left">PC3</td></tr><tr><td align="left">Suzy Millicent</td><td align="left">suzy</td><td align="left">suzy1967</td><td align="left">suzy</td><td align="left">/data/suzy</td><td align="left">PC4</td></tr><tr><td align="left">Ursula Jenning</td><td align="left">ujen</td><td align="left">ujen1974</td><td align="left">ursula</td><td align="left">/data/ursula</td><td align="left">PC5</td></tr><tr><td align="left">Peter Pan</td><td align="left">peter</td><td align="left">pete1984</td><td align="left">peter</td><td align="left">/data/peter</td><td align="left">PC6</td></tr><tr><td align="left">Dale Roland</td><td align="left">dale</td><td align="left">dale1986</td><td align="left">dale</td><td align="left">/data/dale</td><td align="left">PC7</td></tr><tr><td align="left">Bertrand E Paoletti</td><td align="left">eric</td><td align="left">eric1993</td><td align="left">eric</td><td align="left">/data/eric</td><td align="left">PC8</td></tr><tr><td align="left">Russell Lewis</td><td align="left">russ</td><td align="left">russ2001</td><td align="left">russell</td><td align="left">/data/russell</td><td align="left">PC9</td></tr></tbody></table></div></div><br class="table-break"><div class="procedure" title="Procedure 1.5. Migration from Windows NT4 Workstation System to Samba-3"><a name="id2560258"></a><p class="title"><b>Procedure 1.5. Migration from Windows NT4 Workstation System to Samba-3</b></p><ol class="procedure" type="1"><li class="step" title="Step 1"><p><a class="indexterm" name="id2560269"></a> 586 586 Rename the old server from <code class="constant">CASHPOOL</code> to <code class="constant">STABLE</code> 587 587 by logging onto the console as the <code class="constant">Administrator</code>. Restart the machine 588 588 following system prompts. 589 </p></li><li ><p>589 </p></li><li class="step" title="Step 2"><p> 590 590 Name the new server <code class="constant">CASHPOOL</code> using the standard configuration method. 591 591 Restart the machine following system prompts. 592 </p></li><li ><p>592 </p></li><li class="step" title="Step 3"><p> 593 593 Install the latest Samba-3 binary Red Hat Linux RPM that is available from the 594 594 Samba FTP site. 595 </p></li><li ><p>596 <a class="indexterm" name="id25 54256"></a>597 <a class="indexterm" name="id25 54262"></a>595 </p></li><li class="step" title="Step 4"><p> 596 <a class="indexterm" name="id2560314"></a> 597 <a class="indexterm" name="id2560320"></a> 598 598 Add a group account for the office to use. Execute the following: 599 599 </p><pre class="screen"> 600 600 <code class="prompt">root# </code> groupadd accts 601 601 </pre><p> 602 </p></li><li ><p>603 Install the <code class="filename">smb.conf</code> file shown<sup>[<a name="id25 54292" href="#ftn.id2554292" class="footnote">4</a>]</sup>602 </p></li><li class="step" title="Step 5"><p> 603 Install the <code class="filename">smb.conf</code> file shown<sup>[<a name="id2560350" href="#ftn.id2560350" class="footnote">4</a>]</sup> 604 604 in <a class="link" href="simple.html#acctconf" title="Example 1.5. Accounting Office Network smb.conf Old Style Configuration File">“Accounting Office Network smb.conf Old Style Configuration File”</a>. 605 </p></li><li ><p>606 <a class="indexterm" name="id25 54324"></a>607 <a class="indexterm" name="id25 54330"></a>608 <a class="indexterm" name="id25 54337"></a>605 </p></li><li class="step" title="Step 6"><p> 606 <a class="indexterm" name="id2560382"></a> 607 <a class="indexterm" name="id2560389"></a> 608 <a class="indexterm" name="id2560395"></a> 609 609 For each user who uses this system (see <a class="link" href="simple.html#acctingnet" title="Table 1.1. Accounting Office Network Information">“Accounting Office Network Information”</a>), 610 610 execute the following: … … 620 620 Added user "LoginID" 621 621 </pre><p> 622 </p></li><li ><p>623 <a class="indexterm" name="id25 54385"></a>622 </p></li><li class="step" title="Step 7"><p> 623 <a class="indexterm" name="id2560444"></a> 624 624 Create the directory structure for the file shares by executing the following: 625 625 </p><pre class="screen"> … … 635 635 </pre><p> 636 636 The data storage structure is now prepared for use. 637 </p></li><li ><p>638 <a class="indexterm" name="id25 54434"></a>637 </p></li><li class="step" title="Step 8"><p> 638 <a class="indexterm" name="id2560492"></a> 639 639 Configure the CUPS Print Queues: 640 640 </p><pre class="screen"> … … 642 642 </pre><p> 643 643 This creates the necessary print queues with no assigned print filter. 644 </p></li><li ><p>645 <a class="indexterm" name="id25 54460"></a>646 <a class="indexterm" name="id25 54467"></a>644 </p></li><li class="step" title="Step 9"><p> 645 <a class="indexterm" name="id2560518"></a> 646 <a class="indexterm" name="id2560524"></a> 647 647 Edit the file <code class="filename">/etc/cups/mime.convs</code> to uncomment the line: 648 648 </p><pre class="screen"> 649 649 application/octet-stream application/vnd.cups-raw 0 - 650 650 </pre><p> 651 </p></li><li ><p>652 <a class="indexterm" name="id25 54491"></a>653 <a class="indexterm" name="id25 54497"></a>651 </p></li><li class="step" title="Step 10"><p> 652 <a class="indexterm" name="id2560549"></a> 653 <a class="indexterm" name="id2560555"></a> 654 654 Edit the file <code class="filename">/etc/cups/mime.types</code> to uncomment the line: 655 655 </p><pre class="screen"> 656 656 application/octet-stream 657 657 </pre><p> 658 </p></li><li ><p>659 <a class="indexterm" name="id25 54520"></a>658 </p></li><li class="step" title="Step 11"><p> 659 <a class="indexterm" name="id2560578"></a> 660 660 Use the standard system tool to start Samba and CUPS to configure them to restart 661 661 automatically at every system reboot. For example, 662 662 </p><p> 663 <a class="indexterm" name="id25 54532"></a>664 <a class="indexterm" name="id25 54538"></a>665 <a class="indexterm" name="id25 54545"></a>663 <a class="indexterm" name="id2560590"></a> 664 <a class="indexterm" name="id2560596"></a> 665 <a class="indexterm" name="id2560602"></a> 666 666 </p><pre class="screen"> 667 667 <code class="prompt">root# </code> chkconfig smb on … … 670 670 <code class="prompt">root# </code> /etc/rc.d/init.d/cups restart 671 671 </pre><p> 672 </p></li><li ><p>672 </p></li><li class="step" title="Step 12"><p> 673 673 On Alan's workstation, use Windows Explorer to migrate the files from the old server 674 674 to the new server. The new server should appear in the <span class="guimenu">Network Neighborhood</span> 675 675 with the name of the old server (<code class="constant">CASHPOOL</code>). 676 </p><div class="procedure"><ol type="1"><li><p>676 </p><div class="procedure"><ol class="procedure" type="1"><li class="step" title="Step 12.1"><p> 677 677 Log on to Alan's workstation as the user <code class="constant">alan</code>. 678 </p></li><li ><p>678 </p></li><li class="step" title="Step 12.2"><p> 679 679 Launch a second instance of Windows Explorer and navigate to the share called 680 680 <span class="guiicon">files</span> on the server called <span class="guimenu">STABLE</span>. 681 </p></li><li ><p>681 </p></li><li class="step" title="Step 12.3"><p> 682 682 Click in the right panel, and press <span class="guimenu">Ctrl-A</span> to select all files and 683 683 directories. Press <span class="guimenu">Ctrl-C</span> to instruct Windows that you wish to 684 684 copy all selected items. 685 </p></li><li ><p>685 </p></li><li class="step" title="Step 12.4"><p> 686 686 Launch the Windows Explorer, and navigate to the share called <span class="guiicon">files</span> 687 687 on the server called <span class="guimenu">CASHPOOL</span>. Click in the right panel, and then press 688 688 <span class="guimenu">Ctrl-V</span> to commence the copying process. 689 </p></li></ol></div></li><li ><p>689 </p></li></ol></div></li><li class="step" title="Step 13"><p> 690 690 Verify that the files are being copied correctly from the Windows NT4 machine to the Samba-3 server. 691 691 This is best done on the Samba-3 server. Check the contents of the directory tree under … … 704 704 <code class="prompt">root# </code> chmod -R ug+rwxs,o-r+x /data 705 705 </pre><p> 706 </p></li><li ><p>706 </p></li><li class="step" title="Step 14"><p> 707 707 The migration of all data should now be complete. It is time to validate the installation. 708 708 For this, you should make sure all applications, including printing, work before asking the 709 709 customer to test drive the new network. 710 </p></li></ol></div><div class="example"><a name="acctconf"></a><p class="title"><b>Example 1.5. Accounting Office Network <code class="filename">smb.conf</code> Old Style Configuration File</b></p><div class="example-contents"><table class="simplelist" border="0" summary="Simple list"><tr><td># Global parameters</td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[global]</code></em></td></tr><tr><td><a class="indexterm" name="id2554773"></a><em class="parameter"><code>workgroup = BILLMORE</code></em></td></tr><tr><td><a class="indexterm" name="id2554783"></a><em class="parameter"><code>printcap name = CUPS</code></em></td></tr><tr><td><a class="indexterm" name="id2554794"></a><em class="parameter"><code>disable spoolss = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2554804"></a><em class="parameter"><code>show add printer wizard = No</code></em></td></tr><tr><td><a class="indexterm" name="id2554815"></a><em class="parameter"><code>printing = cups</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[files]</code></em></td></tr><tr><td><a class="indexterm" name="id2554834"></a><em class="parameter"><code>comment = Work area files</code></em></td></tr><tr><td><a class="indexterm" name="id2554844"></a><em class="parameter"><code>path = /data/%U</code></em></td></tr><tr><td><a class="indexterm" name="id2554855"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[master]</code></em></td></tr><tr><td><a class="indexterm" name="id2554874"></a><em class="parameter"><code>comment = Master work area files</code></em></td></tr><tr><td><a class="indexterm" name="id2554885"></a><em class="parameter"><code>path = /data</code></em></td></tr><tr><td><a class="indexterm" name="id2554895"></a><em class="parameter"><code>valid users = alan</code></em></td></tr><tr><td><a class="indexterm" name="id2554906"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[printers]</code></em></td></tr><tr><td><a class="indexterm" name="id2554924"></a><em class="parameter"><code>comment = Print Temporary Spool Configuration</code></em></td></tr><tr><td><a class="indexterm" name="id2554936"></a><em class="parameter"><code>path = /var/spool/samba</code></em></td></tr><tr><td><a class="indexterm" name="id2554946"></a><em class="parameter"><code>printable = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2554956"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2554967"></a><em class="parameter"><code>use client driver = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2554977"></a><em class="parameter"><code>browseable = No</code></em></td></tr></table></div></div><br class="example-break"></div></div></div><div class="sect1" lang="en"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a name="id2554992"></a>Questions and Answers</h2></div></div></div><p>710 </p></li></ol></div><div class="example"><a name="acctconf"></a><p class="title"><b>Example 1.5. Accounting Office Network <code class="filename">smb.conf</code> Old Style Configuration File</b></p><div class="example-contents"><table border="0" summary="Simple list" class="simplelist"><tr><td># Global parameters</td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[global]</code></em></td></tr><tr><td><a class="indexterm" name="id2560830"></a><em class="parameter"><code>workgroup = BILLMORE</code></em></td></tr><tr><td><a class="indexterm" name="id2560840"></a><em class="parameter"><code>printcap name = CUPS</code></em></td></tr><tr><td><a class="indexterm" name="id2560851"></a><em class="parameter"><code>disable spoolss = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2560861"></a><em class="parameter"><code>show add printer wizard = No</code></em></td></tr><tr><td><a class="indexterm" name="id2560872"></a><em class="parameter"><code>printing = cups</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[files]</code></em></td></tr><tr><td><a class="indexterm" name="id2560891"></a><em class="parameter"><code>comment = Work area files</code></em></td></tr><tr><td><a class="indexterm" name="id2560902"></a><em class="parameter"><code>path = /data/%U</code></em></td></tr><tr><td><a class="indexterm" name="id2560912"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[master]</code></em></td></tr><tr><td><a class="indexterm" name="id2560931"></a><em class="parameter"><code>comment = Master work area files</code></em></td></tr><tr><td><a class="indexterm" name="id2560942"></a><em class="parameter"><code>path = /data</code></em></td></tr><tr><td><a class="indexterm" name="id2560952"></a><em class="parameter"><code>valid users = alan</code></em></td></tr><tr><td><a class="indexterm" name="id2560963"></a><em class="parameter"><code>read only = No</code></em></td></tr><tr><td> </td></tr><tr><td><em class="parameter"><code>[printers]</code></em></td></tr><tr><td><a class="indexterm" name="id2560981"></a><em class="parameter"><code>comment = Print Temporary Spool Configuration</code></em></td></tr><tr><td><a class="indexterm" name="id2560993"></a><em class="parameter"><code>path = /var/spool/samba</code></em></td></tr><tr><td><a class="indexterm" name="id2561003"></a><em class="parameter"><code>printable = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2561014"></a><em class="parameter"><code>guest ok = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2561024"></a><em class="parameter"><code>use client driver = Yes</code></em></td></tr><tr><td><a class="indexterm" name="id2561034"></a><em class="parameter"><code>browseable = No</code></em></td></tr></table></div></div><br class="example-break"></div></div></div><div class="sect1" title="Questions and Answers"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a name="id2561049"></a>Questions and Answers</h2></div></div></div><p> 711 711 The following questions and answers draw from the examples in this chapter. 712 712 Many design decisions are impacted by the configurations chosen. The intent 713 713 is to expose some of the hidden implications. 714 </p><div class="qandaset" ><dl><dt> <a href="simple.html#id2555010">714 </p><div class="qandaset" title="Frequently Asked Questions"><a name="id2561061"></a><dl><dt> <a href="simple.html#id2561067"> 715 715 What makes an anonymous Samba server more simple than a non-anonymous Samba server? 716 </a></dt><dt> <a href="simple.html#id25 55036">716 </a></dt><dt> <a href="simple.html#id2561093"> 717 717 How is the operation of the parameter force user different from 718 718 setting the root directory of the share SUID? 719 </a></dt><dt> <a href="simple.html#id25 55087">719 </a></dt><dt> <a href="simple.html#id2561144"> 720 720 When would you both use the per share parameter force user and set 721 721 the share root directory SUID? 722 </a></dt><dt> <a href="simple.html#id25 55114">722 </a></dt><dt> <a href="simple.html#id2561171"> 723 723 What is better about CUPS printing than LPRng printing? 724 </a></dt><dt> <a href="simple.html#id25 55158">724 </a></dt><dt> <a href="simple.html#id2561215"> 725 725 When should Windows client IP addresses be hard-coded? 726 </a></dt><dt> <a href="simple.html#id25 55184">726 </a></dt><dt> <a href="simple.html#id2561241"> 727 727 Under what circumstances is it best to use a DHCP server? 728 </a></dt><dt> <a href="simple.html#id25 55222">728 </a></dt><dt> <a href="simple.html#id2561279"> 729 729 What is the purpose of setting the parameter guest ok on a share? 730 </a></dt><dt> <a href="simple.html#id25 55247">730 </a></dt><dt> <a href="simple.html#id2561304"> 731 731 When would you set the global parameter disable spoolss? 732 </a></dt><dt> <a href="simple.html#id25 55333">732 </a></dt><dt> <a href="simple.html#id2561390"> 733 733 Why would you disable password caching on Windows 9x/Me clients? 734 </a></dt><dt> <a href="simple.html#id25 55357">734 </a></dt><dt> <a href="simple.html#id2561414"> 735 735 The example of Abmas Accounting uses User Mode security. How does this provide anonymous access? 736 </a></dt></dl><table border="0" summary="Q and A Set"><col align="left" width="1%"><tbody><tr class="question"><td align="left" valign="top"><a name="id2555010"></a><a name="id2555012"></a></td><td align="left" valign="top"><p>736 </a></dt></dl><table border="0" width="100%" summary="Q and A Set"><col align="left" width="1%"><col><tbody><tr class="question"><td align="left" valign="top"><a name="id2561067"></a><a name="id2561069"></a></td><td align="left" valign="top"><p> 737 737 What makes an anonymous Samba server more simple than a non-anonymous Samba server? 738 738 </p></td></tr><tr class="answer"><td align="left" valign="top"></td><td align="left" valign="top"><p> … … 741 741 UNIX system and to the Samba configuration. Non-anonymous servers require additional 742 742 administration. 743 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id25 55036"></a><a name="id2555038"></a></td><td align="left" valign="top"><p>743 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id2561093"></a><a name="id2561095"></a></td><td align="left" valign="top"><p> 744 744 How is the operation of the parameter <em class="parameter"><code>force user</code></em> different from 745 745 setting the root directory of the share SUID? … … 755 755 The parameter <em class="parameter"><code>force user</code></em> has potential security implications that go 756 756 beyond the actual share root directory. Be careful and wary of using this parameter. 757 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id25 55087"></a><a name="id2555089"></a></td><td align="left" valign="top"><p>757 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id2561144"></a><a name="id2561146"></a></td><td align="left" valign="top"><p> 758 758 When would you both use the per share parameter <em class="parameter"><code>force user</code></em> and set 759 759 the share root directory SUID? … … 762 762 are conducted as the forced user, while all file and directory creation are done as the SUID 763 763 directory owner. 764 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id25 55114"></a><a name="id2555116"></a></td><td align="left" valign="top"><p>764 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id2561171"></a><a name="id2561173"></a></td><td align="left" valign="top"><p> 765 765 What is better about CUPS printing than LPRng printing? 766 766 </p></td></tr><tr class="answer"><td align="left" valign="top"></td><td align="left" valign="top"><p> … … 780 780 Which spooling system is better is a matter of personal taste. It depends on what you want to do and how you want to 781 781 do it and manage it. Most modern Linux systems ship with CUPS as the default print management system. 782 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id25 55158"></a><a name="id2555160"></a></td><td align="left" valign="top"><p>782 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id2561215"></a><a name="id2561217"></a></td><td align="left" valign="top"><p> 783 783 When should Windows client IP addresses be hard-coded? 784 784 </p></td></tr><tr class="answer"><td align="left" valign="top"></td><td align="left" valign="top"><p> … … 789 789 for a DHCP server. This reduces maintenance overheads and eliminates a possible point of network 790 790 failure. 791 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id25 55184"></a><a name="id2555186"></a></td><td align="left" valign="top"><p>791 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id2561241"></a><a name="id2561243"></a></td><td align="left" valign="top"><p> 792 792 Under what circumstances is it best to use a DHCP server? 793 793 </p></td></tr><tr class="answer"><td align="left" valign="top"></td><td align="left" valign="top"><p> … … 805 805 assigned IP addresses with the DNS server. The benefits of Dynamic DNS (DDNS) are considerable in 806 806 a large Windows network environment. 807 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id25 55222"></a><a name="id2555224"></a></td><td align="left" valign="top"><p>807 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id2561279"></a><a name="id2561282"></a></td><td align="left" valign="top"><p> 808 808 What is the purpose of setting the parameter <em class="parameter"><code>guest ok</code></em> on a share? 809 809 </p></td></tr><tr class="answer"><td align="left" valign="top"></td><td align="left" valign="top"><p> 810 810 If this parameter is set to yes for a service, then no password is required to connect to the service. 811 811 Privileges are those of the guest account. 812 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id25 55247"></a><a name="id2555249"></a></td><td align="left" valign="top"><p>812 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id2561304"></a><a name="id2561306"></a></td><td align="left" valign="top"><p> 813 813 When would you set the global parameter <em class="parameter"><code>disable spoolss</code></em>? 814 814 </p></td></tr><tr class="answer"><td align="left" valign="top"></td><td align="left" valign="top"><p> … … 831 831 access rights associated with the logged on user. If the user possesses local administrator rights but not root 832 832 privilege on the Samba host (often the case), the <em class="parameter"><code>OpenPrinterEx()</code></em> call fails. The result is 833 that the client now displays an “<span class="quote">Access Denied; Unable to connect</span>”message in the printer queue window833 that the client now displays an <span class="quote">“<span class="quote">Access Denied; Unable to connect</span>”</span> message in the printer queue window 834 834 (even though jobs may be printed successfully). This parameter MUST not be enabled on a print share that has a valid 835 835 print driver installed on the Samba server. 836 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id25 55333"></a><a name="id2555335"></a></td><td align="left" valign="top"><p>836 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id2561390"></a><a name="id2561392"></a></td><td align="left" valign="top"><p> 837 837 Why would you disable password caching on Windows 9x/Me clients? 838 838 </p></td></tr><tr class="answer"><td align="left" valign="top"></td><td align="left" valign="top"><p> … … 841 841 machine) and decrypted, thus revealing the user's access credentials for all systems the user may have accessed. 842 842 It is most insecure to allow any Windows 9x/Me client to operate with password caching enabled. 843 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id25 55357"></a><a name="id2555359"></a></td><td align="left" valign="top"><p>843 </p></td></tr><tr class="question"><td align="left" valign="top"><a name="id2561414"></a><a name="id2561416"></a></td><td align="left" valign="top"><p> 844 844 The example of Abmas Accounting uses User Mode security. How does this provide anonymous access? 845 845 </p></td></tr><tr class="answer"><td align="left" valign="top"></td><td align="left" valign="top"><p> … … 849 849 password are the same as those set on the Samba server, access is transparent and does not require 850 850 separate user authentication. 851 </p></td></tr></tbody></table></div></div><div class="footnotes"><br><hr width="100" align="left"><div class="footnote"><p><sup>[<a name="ftn.id255 0875" href="#id2550875" class="para">1</a>] </sup>The examples given mirror those documented851 </p></td></tr></tbody></table></div></div><div class="footnotes"><br><hr width="100" align="left"><div class="footnote"><p><sup>[<a name="ftn.id2556934" href="#id2556934" class="para">1</a>] </sup>The examples given mirror those documented 852 852 in The Official Samba-3 HOWTO and Reference Guide, Second Edition (TOSHARG2) Chapter 2, Section 2.3.1. You may gain additional 853 853 insight from the standalone server configurations covered in TOSHARG2, sections 2.3.1.2 through 2.3.1.4. 854 </p></div><div class="footnote"><p><sup>[<a name="ftn.id255 1054" href="#id2551054" class="para">2</a>] </sup>854 </p></div><div class="footnote"><p><sup>[<a name="ftn.id2557112" href="#id2557112" class="para">2</a>] </sup> 855 855 This information is given purely as an example of how data may be stored in such a way that it 856 856 will be easy to locate records at a later date. The example is not meant to imply any instructions 857 857 that may be construed as essential to the design of the solution; this is something you will almost 858 certainly want to determine for yourself.</p></div><div class="footnote"></div><div class="footnote"><p><sup>[<a name="ftn.id25 54292" href="#id2554292" class="para">4</a>] </sup>This example uses the858 certainly want to determine for yourself.</p></div><div class="footnote"></div><div class="footnote"><p><sup>[<a name="ftn.id2560350" href="#id2560350" class="para">4</a>] </sup>This example uses the 859 859 <em class="parameter"><code>smbpasswd</code></em> file in an obtuse way, since the use of 860 860 the <em class="parameter"><code>passdb backend</code></em> has not been specified in the <code class="filename">smb.conf</code>
Note:
See TracChangeset
for help on using the changeset viewer.
