Samba on Solaris 10 in native ADS environment

Similar Messages

• Install and configuring SAMBA in Solaris 8.0

  Hi
  Can any one help tme to install and configure SAMBA on solaris 8.0
  Thanks in advance

  We don't provide sudo for Solaris 8, but you can try with the package available there : http://www.sudo.ws/sudo/download.html#binary
  They don't provide a specific package for Solaris 8 but may be will the binary working correctly in your zone.
  An other package, and is builded for Solaris 8, is available on www.sunfreeware.com website.
  Regarding the configuration, the method can differ depending on which version you will use. You can find a lot of examples on Internet if you want for details.

• Problem on Solaris 10 Native ldap client.

  Hi,
  I have configured the DS 5.2 on Solaris 10 and it seems to be working.
  I'm getting the answers from the ldapsearch command with the SSL.
  ./ldapsearch -h ismesl90 -p 636 -Z -P /var/ldap -D "cn=Directory Manager" -w password -b "cn=Password Policy,cn=config" "(objectclass=*)"
  version: 1
  dn: cn=Password Policy,cn=config
  objectClass: top
  objectClass: passwordPolicy
  cn: Password Policy
  passwordInHistory: 0
  passwordStorageScheme: CRYPT
  passwordUnlock: on
  passwordMustChange: off
  passwordNonRootMayResetUserpwd: off
  passwordWarning: 86400
  passwordExpireWithoutWarning: on
  passwordLockout: off
  passwordMinLength: 6
  passwordMaxFailure: 3
  passwordMaxAge: 8640000
  passwordResetFailureCount: 600
  passwordisglobalpolicy: off
  passwordChange: on
  passwordExp: off
  passwordLockoutDuration: 3600
  passwordCheckSyntax: off
  passwordMinAge: 0
  passwordRootdnMayBypassModsChecks: off
  but on the client it complians about the connection:
  ul 20 18:50:16 king ldap_cachemgr[2823]: [ID 293258 daemon.warning] libsldap: Status: 81 Mesg: openConnection: simple bind failed - Can't contact LDAP server
  Jul 20 18:50:16 king ldap_cachemgr[2823]: [ID 293258 daemon.warning] libsldap: Status: 7 Mesg: Session error no available conn.
  Jul 20 18:50:16 king ldap_cachemgr[2823]: [ID 186574 daemon.error] Error: Unable to refresh profile:default: Session error no available conn.
  I have installed the latest patches on both machines and it didn't solved the problem.
  The ldapsearch command that comes with the DS 5.2 works and the native doesn't.
  I have create the keys and cert's and everything.
  Have someone faced this problem?
  Thanks,
  Shalom
  Message was edited by:
  shalomG

  I get the same error in /var/adm/messages of client and in client's cachemgr.log. Also, in cachemgr.log there is this error message:
  Error: Unable to update from profile
  I have searched Sun's JSDS documentation and I can't find any troubleshooting info for this problem, so I'm hoping that one of you has found a good solution to this problem-thanks. Some details of my setup:
  Results of DS search issued from client:
  myclient-root: /var/ldap:143)-> ldapsearch -h myserver -D "cn=pr
  oxyagent,ou=profile,dc=example,dc=com" -w (removed) -b ou=profile,dc =example,dc=com objectclass=\*
  version: 1
  dn: ou=profile,dc=example,dc=com
  ou: profile
  objectClass: top
  objectClass: organizationalUnit
  dn: cn=proxyagent,ou=profile,dc=example,dc=com
  cn: proxyagent
  sn: proxyagent
  objectClass: top
  objectClass: person
  userPassword: (removed)
  dn: cn=myprofile1,ou=profile,dc=example,dc=com
  objectClass: top
  objectClass: DUAConfigProfile
  defaultSearchBase: dc=example,dc=com
  followReferrals: FALSE
  defaultSearchScope: one
  searchTimeLimit: 30
  cn: myprofile1
  bindTimeLimit: 10
  preferredServerList: myserver
  defaultServerList: myserver
  authenticationMethod: none
  credentialLevel: anonymous
  profileTTL: 3600
  dn: cn=myprovile2,ou=profile,dc=example,dc=com
  objectClass: top
  objectClass: DUAConfigProfile
  defaultServerList: myserver
  defaultSearchBase: dc=example,dc=com
  followReferrals: FALSE
  defaultSearchScope: one
  searchTimeLimit: 30
  preferredServerList: myserver
  cn: myprofile2
  bindTimeLimit: 10
  profileTTL: 3600
  authenticationMethod: simple
  credentialLevel: proxy
  serviceCredentialLevel: proxy
  serviceAuthenticationMethod: simple
  dn: cn=myprofile3,ou=profile,dc=example,dc=com
  objectClass: DUAConfigProfile
  objectClass: top
  cn: myprofile3
  serviceAuthenticationMethod: simple
  authenticationMethod: simple
  bindTimeLimit: 10
  followReferrals: FALSE
  searchTimeLimit: 30
  defaultSearchBase: dc=example,dc=com
  defaultSearchScope: one
  attributeMap: shadow:userpassword=userPassword
  attributeMap: group:gidnumber=gidNumber
  attributeMap: group:userpassword=userPassword
  attributeMap: passwd:gecos=cn
  attributeMap: group:memberuid=memberUid
  attributeMap: passwd:loginshell=loginShell
  attributeMap: passwd:gidnumber=gidNumber
  attributeMap: passwd:homedirectory=unixHomeDirectory
  attributeMap: passwd:uidnumber=uidNumber
  attributeMap: shadow:shadowflag=shadowFlag
  preferredServerList: myserver
  serviceSearchDescriptor: passwd:dc=example,dc=com?sub
  serviceSearchDescriptor: group:dc=example,dc=com?sub
  serviceCredentialLevel: proxy
  credentialLevel: proxy
  profileTTL: 3600
  defaultServerList: myserver
  objectclassMap: group:posixGroup=group
  objectclassMap: passwd:posixAccount=user
  When I use profile with no authentication ( myprofile1 ), I do not get this error, but, I cannot change my user password ( the documentation says this is expected behavior which is why I'm trying to use proxy authentication )
  Info from systems ( client and server ):
  (myserver-root: /:281)-> showrev
  Hostname: myserver
  Hostid: (removed)
  Release: 5.10
  Kernel architecture: sun4u
  Application architecture: sparc
  Hardware provider: Sun_Microsystems
  Domain: example.com
  Kernel version: SunOS 5.10 Generic_127111-01
  Directory Server Version Info:
  Sun-ldbm/6.0(64-bit) SunOS 5.10 sparc
  (myclient-root: /var/ldap:147)-> showrev
  Hostname: myclient
  Hostid: (removed)
  Release: 5.10
  Kernel architecture: sun4u
  Application architecture: sparc
  Hardware provider: Sun_Microsystems
  Domain: example.com
  Kernel version: SunOS 5.10 Generic_127111-01
  Hoping someone out there has a fix for this.
  Thanks.

• Samba and Solaris, access slow via XP

  Hi everyone,
  I've new to solaris and I've installed 10, update 5. I've configured samba (very badly I believe) so that I can access my solaris box from my XP 64 computer.
  Both are on a local network (connected via a Belkin router) and in the same workgroup. I can see the XP machine from solaris, but not access anything (I just get a 'cannot show contents of directory' message). This is not my main problem, since I mostly want to access the solaris system from XP (I want to set up the solaris box as a RAID Z NAS). This works to a degree. I can see and access my solaris filesystem from XP. Hurray. I have two problems:
  1. I have set guest to NO, but I never get asked for a password (I've set up an account on the solaris system with a password using smbpasswd). I just get access. Why is this? I don't want a bunch of ner-do-wels skulking about my server and erasing files and such.
  2. While I can stream music fine, after a minute or so, if I want to browse files from XP it stalls for about one minute (I think it is re-logging in) and while this happens any music being streamed stops. How do I stay connected and logged in? Here is my smb.conf:
  # Samba config file created using SWAT
  # from 192.168.2.3 (192.168.2.3)
  # Date: 2008/05/11 18:46:15
  [global]
       socket options = TCP_NODELAY SO_KEEPALIVE IPTOS_LOWDELAY
       ldap ssl = no
  [home]
       read only = No
       guest ok = No
       available = No
  [homes]
       valid users = %S
       read only = No
       guest ok = No
  As you can tell I'm pretty new to all this so you may have to dumb down your answers a little. Thanks for the help.
  Cisco

  Yup.....repeatable!
  Delete mapped drive.
  Connect via USB
  Playbook shows in windows explorer as PlayBook [Pin: number] Y:  being the drive that XP has mapped it to.
  Then search for the PlayBook by ip address \\192.168.1.x
  It shows up under workgroup by its ip address
  Disconect USB cable
  Workgroup connect remains (via wifi)
  Strange to say the least.

• Issues with Samba and Solaris 10 when number of group is greater than 16

  Has anyone heard if Sun plan to increase the value of ngroups_max from 16 to something larger in the next release of Solaris.
  I have just upgraded Samba from version 3.2 to 3.3-3.4 and now users that belong to more than 16 groups have no access the shares.
  I know the value can be increased via /etc/system but this breaks other stuff.
  What I need is either Samba to take this limitation into account or SUN to overcome the restriction.
  Edited by: neilnewman on Sep 22, 2009 8:30 AM
  Edited by: neilnewman on Sep 22, 2009 8:34 AM

  After some more digging around to help myself, I found a way to get users that belong to more than 16 Windows groups access to the Samba shares under Solaris.
  Using a source copy of Samba 3.2.15
  cd source/lib
  edit util.c
  around line 460 I added the following of lines of code:
  if (*num_gids >14)
  *num_gids=15;
  Provided the users in question that require Samba access have the group they need within the first 15 groups, all works OK.
  I presume this could also be done with latter versions of Samba, but I have not taken a look at this point.

• Cluster Setup on SOlaris 10 in Zone Environment

  Hi
  I would like to implement Sun CLuster 3.2 on Single Server, by creating 2 zones as nodes, In the same ref. can anyone provide me the detailed steps.
  Thanks
  Rajan

  For the single node cluster installation you can use the procedure explained at:
  http://opensolaris.org/os/community/ha-clusters/ohac/Documentation/SCXdocs/installsinglenode/
  While this is for Solaris Cluster Express, it will be the same procedure for Solaris 10 / Solaris Cluster 3.2.
  Once the single node cluster is installed, you simply configure and install two native non-global zones. Nothing cluster specific about that - refer to the standard Solaris Zones configuration.
  Lets assume you have configured two zones, names "z1" and "z1", your nodename for the global zone is "single-node". Then you can configure a resource group like:
  # clrg create -n single-node:z1,single-node:z2 my-rgAnd you can create your resources within my-rg. This resource group can then failover between z1 and z2 on that single node.
  Regards
  Thorsten

• Migration of old code in solaris 10 + oracle 10 environment

  While compiling old pro c code on solaris 10 and oracle 10 environment , I am getting below error. Any guesses why this is happening?
  Pro*C/C++: Release 10.2.0.3.0 - Production on Mon Oct 15 14:02:07 2007
  Copyright (c) 1982, 2005, Oracle. All rights reserved.
  System default option values taken from: /dboracle/orabase/product/10.2.0/precomp/admin/pcscfg.cfg
  Syntax error at line 69, column 2, file /usr/include/sys/uio.h:
  Error at line 69, column 2 in file /usr/include/sys/uio.h
  lloff_t uiooffset; /* file offset */
  .1
  PCC-S-02201, Encountered the symbol "lloff_t" when expecting one of the followin
  g:
  } char, const, double, enum, float, int, long, ulong_varchar,
  OCIBFileLocator OCIBlobLocator, OCIClobLocator, OCIDateTime,
  OCIExtProcContext, OCIInterval, OCIRowid, OCIDate, OCINumber,
  OCIRaw, OCIString, short, signed, sql_context, sql_cursor,
  struct, union, unsigned, utext, uvarchar, varchar, void,
  volatile, a typedef name,
  The symbol "enum," was substituted for "lloff_t" to continue.

  Hi,
  Try using the PARSE=PARTIAL USERID=user/password[@SID] SQLCHECK=SEMANTICS precompiler options.
  All your hosts variables must be declared inside a Declare section.
  Reference: Pro C/C++ Programmers Guide, chapter 5
  Reguards,
  Rene Rivet

• Samba on Solaris 10 x86

  I tried to install Samba (samba-3.0.10-sol10-intel-local.gz) on my Solaris 10 OS that is running on VMWare5. Samba reports an error message:
  ld.so.1: ./smbd: fatal: libiconv.so.2: open failed: No such file or directory Killed.
  Prior to Samba installation I have installed following packages:
  - readline-5.0-sol10-intel-local.gz
  - popt-1.7-sol10-intel-local.gz
  - ncurses-5.4-sol10-intel-local.gz
  - libiconv-1.8-sol10-intel-local.gz
  - libgcc-3.3-sol10-intel-local.gz
  I was following this order respectively and there were some conflicting files in this process so I replace them. Didnt know what else to do...?
  Please help. hilfe. aiuto. pomoc.

  Also, if you are running any of the SMB commands from the command line and still get the same error, make sure you have libiconv's lib path in your "LD_LIBRARY_PATH" setting.
  Brady R. Jones
  Sr. Systems Administrator
  National Solar Observatory
  Sunspot, NM 88349
  DSN: 572-7542 ex 7038
  PH: (505) 434-7038
  FX: (505) 434-7029
  http://www.nso.edu
  bjones@nso.edu

• How to configure Samba on Solaris 9.0 x86

  Dear All :
  I installed Solaris 9.0 on my machine , i know that Samba is installed " i used pkginfo | grep samba "
  . but the related services are not in /etc/inetd.conf or /etc/services files .
  what to do to activate samba and make it to run at start up .
  Thank s

  Try to see the following links, I did get my samba up and running and its working fine, these two links did help me a lot in configuring the file.
  http://www.oreilly.com/catalog/samba/chapter/book/index.html
  http://www.swlink.net/~styma/SunAtHome/Samba.html
  Samir Patel

• Solaris 10 - native cluster, multipath, volume management.

  Hi,
  I have downloaded Solaris 10 x86 DVD. Planning to install it inside VMWare. Kindly let me know if there is any native clustering , multipathing and volume management software thats pre bundled with Solaris 10 or is it paid?
  I am a storage admin and I want to get a clear understanding of how the above mentioned things work. Will install two instances of Solaris 10 and try out a couple of things.
  Please let me know.

  Hi Pascal,
  Thank you for such a quick reply.
  I am looking for a clustering software that will basically be free, yet give me a glimpse of how the clustering stuff works on Solaris. I cannot afford the paid stuff, so will have to make do with the freebies...If my understanding is correct, you are stating that the native multipathing and volume management is integrated AND free. Kindly let me know.
  So if I install a few virtual disks inside VMware, can I use the native multipathing to detect them? I cant get the vmware solaris to access SAN, so basically looking for something that will make the OS "think" that its getting SAN LUNs, so that I can try multipathing.
  Sorry for topping up another question.
  Edited by: 992432 on Mar 7, 2013 3:40 AM

• Installing & Configuring Samba on Solaris 10 ... Help needed for novice !!

  Guys,
  I have a freshly installed Sun box with Solaris 10 installed on it. I think Samba is meant to be installed with Solaris but I can't find it. So I was hoping to download and install then configure Samba myself from sunfreeware etc. If anyone can give me some help i'd be very grateful. I'm fairly new to unix but know my way around a little.
  Cheers guys
  Stevie P

  I steer clear of samba since it is such a mess to conifgure (not their fault, blame MS). NFS is so simple that I just refuse to enable smb and therefore exclude ms boxes from sharing on the network. You can find many of the smb related binaries in /usr/sfw/bin
  Check the docs.sun.com for step by step instructions on how to set it up.

• Tape drive  and pci-x card  with Solaris 10 on  VMWare environment

  I have a Sun X4170 server (x84_64) running VMWare ESXi 4.0. On it I have two VM guests- my production file server running Solaris 10 U7 and a test file server running Solaris 10 U9.
  The X4170 has a PCI-X LSI Logic dual external U320 parallel scsi card. I have a tape drive + auto loader cabled to the X4170. It is a Quantum branded autoloader but I believe the tape drive itself is HP. The autoloader+tape drive share a single SCSI ID (6) but have separate LUNS.
  I have two choices for making this system accessible to the OS:
  -     Virtualize the tape drive and loader individually.
  -     In VMWare, enable the scsi card as a pass through device. The SCSI card is then added as PCI device to the virtual machine (actually two devices since it is a dual scsi card.)
  I had virtualized a single-drive tape drives with Vmware in the past.
  However, when I tried I virtualize tape drive and loader, Solaris complained about the scsi id’s being invalid. I don’t think it likes two devices with a single scsi ID. Also, I think I need the backup software to see the REAL tape drive and autoloader (for inventory, changing tapes etc)
  On the Solaris 10 U9 “Test” machine:
  # cfgadm -al
  Ap_Id Type Receptacle Occupant Condition
  c1 scsi-bus connected configured unknown
  c1::dsk/c1t0d0 disk connected configured unknown
  mpt1:scsi scsi-bus connected configured unknown
  mpt1:scsi::rmt/0 tape connected configured unknown
  mpt1:scsi::scsi/changer/c2t6d med-changer connected configured unknown
  mpt2:scsi scsi-bus connected unconfigured unknown
  cfgadm: Configuration administration not supported: Error: hotplug service is pr
  obably not running, please use 'svcadm enable hotplug' to enable the service. Se
  e cfgadm_shp(1M) for more details.
  bash-3.00# mt status
  /dev/rmt/0n: no tape loaded or drive offline
  bash-3.00#
  # svcadm enable hotplug
  # cfgadm -al
  Ap_Id Type Receptacle Occupant Condition
  c1 scsi-bus connected configured unknown
  c1::dsk/c1t0d0 disk connected configured unknown
  mpt1:scsi scsi-bus connected configured unknown
  mpt1:scsi::rmt/0 tape connected configured unknown
  mpt1:scsi::scsi/changer/c2t6d med-changer connected configured unknown
  mpt2:scsi scsi-bus connected unconfigured unknown
  pcie160 scsi/hp connected configured ok
  pcie161 unknown empty unconfigured unknown
  pcie162 unknown empty unconfigured unknown
  On the Solaris 10 U7 “Production” machine:
  The hotplug service did not exist until I installed the following patches
  142934-02 SunOS 5.10_x86: failsafe patch
  142910-17 SunOS 5.10_x86: kernel patch
  144489-02 SunOS 5.10_x86: kernel patch
  # svcadm enable hotplug
  # cfgadm -al
  Ap_Id Type Receptacle Occupant Condition
  c1 scsi-bus connected configured unknown
  c1::dsk/c1t0d0 disk connected configured unknown
  c1::scsi/direct/c1t0d0 disk connected configured unknown
  c4 scsi-bus connected unconfigured unknown
  c5 scsi-bus connected unconfigured unknown
  pcie160 scsi/hp connected configured ok
  Running “devfsadm –v “ does not change anything
  Any ideas? Maybe a need to update the MPT driver or is that dangerous?
  Thanks

  Actually, updating the kernel patches (and enabling hot plug service) did solve the problem. At some point during between testing the system before and after patching, the tape drive got turned off. Since the system patching was being done remotely it was not immediately obvious that the tape drive was off.

• S7120 slow/errornous storage of excel/powerpoint/word in ADS environment

  Recently we migrate form our SUN PCNL to ADS (Windows 2008) with S7120 storage. The S7120 is pretty fast but if users try to store large (~100-150MB) excel/ppt/word files it is to store file is getting very slow and sometimes it fails.
  The way MS-office store files is that first all data are stored to temporary file in the file system and then the file is renamed and the old file is saved as security copy of deleted, depending on client user settings. There are pretty much information about this problem, but no real solution.
  Can this be caused by some strange SMB settings on S7120? Does anybody in the forum have a similar configuration (XP and Windows 7 clients) and have the same problems or maybe not.
  Thanks for any hint about this problem. It is really annoying for the users.
  Ciao,

  This looks like DownLite. Instructions for removal are here:
  http://www.thesafemac.com/arg-downlite/
  Matt

• New to Solaris, Some Samba and NTFS issues.

  Hi Im new to solaris and trying out ZFS which has been great.
  Im haivng some trouble that I cant find up to date info on so here goes:
  First how do you mount an NTFS volume in Solaris 11 Express?
  I need to access the data on an NTFS drive to populate my new ZFS tank.
  Secondly, I have read only access on my samba shares from windows machines but my smb.conf looks right. a copy of my smb.conf will follow
  Any suggestions would be appreciated.
  # This is the main Samba configuration file. You should read the
  # smb.conf(5) manual page in order to understand the options listed
  # here. Samba has a huge number of configurable options (perhaps too
  # many!) most of which are not shown in this example
  # For a step to step guide on installing, configuring and using samba,
  # read the Samba-HOWTO-Collection. This may be obtained from:
  # http://www.samba.org/samba/docs/Samba-HOWTO-Collection.pdf
  # Many working examples of smb.conf files can be found in the
  # Samba-Guide which is generated daily and can be downloaded from:
  # http://www.samba.org/samba/docs/Samba-Guide.pdf
  # Any line which starts with a ; (semi-colon) or a # (hash)
  # is a comment and is ignored. In this example we will use a #
  # for commentry and a ; for parts of the config file that you
  # may wish to enable
  # NOTE: Whenever you modify this file you should run the command "testparm"
  # to check that you have not made any basic syntactic errors.
  #======================= Global Settings =====================================
  [global]
  # workgroup = NT-Domain-Name or Workgroup-Name, eg: MIDEARTH
  workgroup = WORKGROUP
  # server string is the equivalent of the NT Description field
  server string = Samba Server
  # Security mode. Defines in which mode Samba will operate. Possible
  # values are share, user, server, domain and ads. Most people will want
  # user level security. See the Samba-HOWTO-Collection for details.
  security = share
  # This option is important for security. It allows you to restrict
  # connections to machines which are on your local network. The
  # following example restricts access to two C class networks and
  # the "loopback" interface. For more examples of the syntax see
  # the smb.conf man page
  ; hosts allow = 192.168.1. 192.168.2. 127.
  # If you want to automatically load your printer list rather
  # than setting them up individually then you'll need this
  load printers = yes
  # you may wish to override the location of the printcap file
  ; printcap name = /etc/printcap
  # on SystemV system setting printcap name to lpstat should allow
  # you to automatically obtain a printer list from the SystemV spool
  # system
  ; printcap name = lpstat
  # It should not be necessary to specify the print system type unless
  # it is non-standard. Currently supported print systems include:
  # bsd, cups, sysv, plp, lprng, aix, hpux, qnx
  ; printing = cups
  # Uncomment this if you want a guest account, you must add this to /etc/passwd
  # otherwise the user "nobody" is used
  ; guest account = pcguest
  # this tells Samba to use a separate log file for each machine
  # that connects
  log file = /var/samba/log/log.%m
  # Put a capping on the size of the log files (in Kb).
  max log size = 50
  # Use password server option only with security = server
  # The argument list may include:
  # password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name]
  # or to auto-locate the domain controller/s
  # password server = *
  ; password server = <NT-Server-Name>
  # Use the realm option only with security = ads
  # Specifies the Active Directory realm the host is part of
  ; realm = MY_REALM
  # Backend to store user information in. New installations should
  # use either tdbsam or ldapsam. smbpasswd is available for backwards
  # compatibility. tdbsam requires no further configuration.
  passdb backend = smbpasswd
  # Using the following line enables you to customise your configuration
  # on a per machine basis. The %m gets replaced with the netbios name
  # of the machine that is connecting.
  # Note: Consider carefully the location in the configuration file of
  # this line. The included file is read at that point.
  ; include = /usr/sfw/lib/smb.conf.%m
  # Configure Samba to use multiple interfaces
  # If you have multiple network interfaces then you must list them
  # here. See the man page for details.
  ; interfaces = 192.168.12.2/24 192.168.13.2/24
  # Browser Control Options:
  # set local master to no if you don't want Samba to become a master
  # browser on your network. Otherwise the normal election rules apply
  ; local master = no
  # OS Level determines the precedence of this server in master browser
  # elections. The default value should be reasonable
  ; os level = 33
  # Domain Master specifies Samba to be the Domain Master Browser. This
  # allows Samba to collate browse lists between subnets. Don't use this
  # if you already have a Windows NT domain controller doing this job
  ; domain master = yes
  # Preferred Master causes Samba to force a local browser election on startup
  # and gives it a slightly higher chance of winning the election
  ; preferred master = yes
  # Enable this if you want Samba to be a domain logon server for
  # Windows95 workstations.
  ; domain logons = yes
  # if you enable domain logons then you may want a per-machine or
  # per user logon script
  # run a specific logon batch file per workstation (machine)
  ; logon script = %m.bat
  # run a specific logon batch file per username
  ; logon script = %U.bat
  # Where to store roving profiles (only for Win95 and WinNT)
  # %L substitutes for this servers netbios name, %U is username
  # You must uncomment the [Profiles] share below
  ; logon path = \\%L\Profiles\%U
  # Windows Internet Name Serving Support Section:
  # WINS Support - Tells the NMBD component of Samba to enable it's WINS Server
  ; wins support = yes
  # WINS Server - Tells the NMBD components of Samba to be a WINS Client
  #     Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
  ; wins server = w.x.y.z
  # WINS Proxy - Tells Samba to answer name resolution queries on
  # behalf of a non WINS capable client, for this to work there must be
  # at least one     WINS Server on the network. The default is NO.
  ; wins proxy = yes
  # DNS Proxy - tells Samba whether or not to try to resolve NetBIOS names
  # via DNS nslookups. The default is NO.
  dns proxy = no
  # These scripts are used on a domain controller or stand-alone
  # machine to add or delete corresponding unix accounts
  ; add user script = /usr/sbin/useradd %u
  ; add group script = /usr/sbin/groupadd %g
  ; add machine script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %u
  ; delete user script = /usr/sbin/userdel %u
  ; delete user from group script = /usr/sbin/deluser %u %g
  ; delete group script = /usr/sbin/groupdel %g
  #============================ Share Definitions ==============================
  [homes]
  comment = Home Directories
  browseable = no
  writable = yes
  # Un-comment the following and create the netlogon directory for Domain Logons
  ; [netlogon]
  ; comment = Network Logon Service
  ; path = /usr/sfw/lib/netlogon
  ; guest ok = yes
  ; writable = no
  ; share modes = no
  # Un-comment the following to provide a specific roving profile share
  # the default is to use the user's home directory
  ;[Profiles]
  ; path = /usr/local/samba/profiles
  ; browseable = no
  ; guest ok = yes
  # NOTE: If you have a BSD-style print system there is no need to
  # specifically define each individual printer
  [printers]
  comment = All Printers
  path = /var/spool/samba
  browseable = no
  # Set public = yes to allow user 'guest account' to print
  guest ok = no
  writable = no
  printable = yes
  # This one is useful for people to share files
  ;[tmp]
  ; comment = Temporary file space
  ; path = /tmp
  ; read only = no
  ; public = yes
  # A publicly accessible directory, but read only, except for people in
  # the "staff" group
  ;[public]
  ; comment = Public Stuff
  ; path = /home/samba
  ; public = yes
  ; writable = no
  ; printable = no
  ; write list = @staff
  # Other examples.
  # A private printer, usable only by fred. Spool data will be placed in fred's
  # home directory. Note that fred must have write access to the spool directory,
  # wherever it is.
  ;[fredsprn]
  ; comment = Fred's Printer
  ; valid users = fred
  ; path = /homes/fred
  ; printer = freds_printer
  ; public = no
  ; writable = no
  ; printable = yes
  # A private directory, usable only by fred. Note that fred requires write
  # access to the directory.
  ;[fredsdir]
  ; comment = Fred's Service
  ; path = /usr/somewhere/private
  ; valid users = fred
  ; public = no
  ; writable = yes
  ; printable = no
  # a service which has a different directory for each machine that connects
  # this allows you to tailor configurations to incoming machines. You could
  # also use the %U option to tailor it by user name.
  # The %m gets replaced with the machine name that is connecting.
  ;[pchome]
  ; comment = PC Directories
  ; path = /usr/pc/%m
  ; public = no
  ; writable = yes
  # A publicly accessible directory, read/write to all users. Note that all files
  # created in the directory by users will be owned by the default user, so
  # any user with access can delete any other user's files. Obviously this
  # directory must be writable by the default user. Another user could of course
  # be specified, in which case all files would be owned by that user instead.
  ;[public]
  ; path = /usr/somewhere/else/public
  ; public = yes
  ; only guest = yes
  ; writable = yes
  ; printable = no
  # The following two entries demonstrate how to share a directory so that two
  # users can place files there that will be owned by the specific users. In this
  # setup, the directory should be writable by both users and should have the
  # sticky bit set on it to prevent abuse. Obviously this could be extended to
  # as many users as required.
  ;[myshare]
  ; comment = Mary's and Fred's stuff
  ; path = /usr/somewhere/shared
  ; valid users = mary fred
  ; public = no
  ; writable = yes
  ; printable = no
  ; create mask = 0765
  [Series]
  comment = TV Series
  path = /home/Kirby/Series
  public = yes
  only guest = yes
  writable = yes
  printable = no

  875739 wrote:
  Hi Im new to solaris and trying out ZFS which has been great.
  Im haivng some trouble that I cant find up to date info on so here goes:
  First how do you mount an NTFS volume in Solaris 11 Express?
  I need to access the data on an NTFS drive to populate my new ZFS tank.I never had a need for it but I think you'll have to compile fuse ntfs-3g manually.
  http://web.archiveorange.com/archive/v/u46DbWSGcIzl7pexf4hQ
  >
  Secondly, I have read only access on my samba shares from windows machines but my smb.conf looks right. a copy of my smb.conf will follow
  Any suggestions would be appreciated.You don't need to use Samba in Solaris 11 Express.
  http://download.oracle.com/docs/cd/E19963-01/html/821-1448/gaynd.html#gayne

• Solaris 10 u5 Samba slow transfer rates?

  Hi!
  I've installed Solaris 10 x86 (Core2Duo - x64) server, with Samba over ZFS RAID-Z. Samba is a part of Active Directory Domain. I've managed to join it to domain, to get the users and groups from A.D. and to translate them to Unix IDs. Everything works really good. Samba is installed from the packages from Solaris 10 DVD.
  Only problem I have is the performance :( It's disastrous!
  On 100Mbit Realtek NIC, Samba can manage around 4 MB/s if log level is set to very high (10). If I lower it to 0, then transfer rates go up to 7.5-8.5MB/s and they fluctuate in that interval.
  On the same network, there is a Debian Samba server, and transfer rates go high as 10.5-11.0MB/s.
  Next test I did was switching to Gbit interface. That increased transfer rates up to 25 MB/s, but that is still 5 times slower than the theoretical limit.
  So, next thing I've tried was to switch to Blastwave (CSW) Samba instead of SUNW Samba.... My transfer rates went back to normal immediately! It was a bit of shock for me... I could transfer about 10MB/s on 100Mbit interface, and around 45MB/s on 1Gbit interface. 45MB/s is theoretically limit of the workstation hard drive I was doing transfers from.
  Sun packaged (SUNW) Samba is 3.0.28 patched today to the latest patchlevel, and CSW uses 3.0.23. I used CSW Samba with the exact same smb.conf file. Only problem is - I never managed to connect CSW samba to ADS on my network :( So I gave up on that, and I'm facing a dilemma. Managers request full speed of the Samba server (comparable to Linux/Windows shares), but I just can't connect to Domain with CSW package.
  So I'm asking you guys - any ideas what could be the problem with SUNW Samba and performance? Is it just the 3.0.28 vs 3.0.23 issue, or what? Why is there so big difference in transfer rates? :(
  Please help!

  OK, here goes my smb.conf:
  [global]
  workgroup = MYCOMPANY
  realm = MYCOMPANY.LOCAL
  server string = server4 (Samba, Solaris 10)
  security = ADS
  map to guest = Bad User
  obey pam restrictions = Yes
  password server = server1.mycompany.local
  passdb backend = tdbsam
  log file = /var/samba/log/log.%m
  max log size = 50
  socket options = TCP_NODELAY IPTOS_LOWDELAY SO_KEEPALIVE
  load printers = No
  local master = No
  domain master = No
  dns proxy = No
  idmap uid = 10000-90000
  idmap gid = 10000-90000
  winbind separator = +
  winbind enum users = Yes
  winbind enum groups = Yes
  winbind use default domain = Yes
  [share]
  comment = Share on ZFS Raid-Z
  path = /tank/share
  force user = local_user
  force group = users
  read only = No
  guest ok = Yes
  vfs objects = zfsacl