Page 1 of 2 12 LastLast
Results 1 to 10 of 12

Thread: samba / posix zimlet home directory creation

Hybrid View

  1. #1
    Join Date
    Jan 2008
    Location
    Australia
    Posts
    25
    Rep Power
    7

    Default samba / posix zimlet home directory creation

    Hello everyone,

    I have been implementing/using the zimbra collaboration Suite with samba posix zimlet. It is working fine from what I can tell. I am only using the mail server for my own use so far. I have used the following link as a guide.

    Code:
    http://wiki.zimbra.com/index.php?title=UNIX_and_Windows_Accounts_in_Zimbra_LDAP_and_Zimbra_Admin_UI
    The thing I never could get to work was the automatic creation of /home/(new user) directory at first logon to the domain. I have searched and found heaps of sites with answers, but nothing has worked out. It seem it has to do with pam_mkhomedir.so. I have the exact same content in all /etc/pam.d/common-* as in the guide.

    I also came across another way of doing just that. Here is what I am using for the time being.

    All on one line, /etc/samba.conf, for [homes]:

    root preexec = /etc/samba/scripts/mk_sambadir "/home/%u" "%u" "%g"

    create file mk_sambadir with content below and make it executable:
    /etc/samba/scripts/mk_sambadir:

    #!/bin/bash
    if [ ! -d "$1" ]
    then
    mkdir "$1"
    fi
    chmod 770 "$1" -R
    chown "$2" "$1" -R
    chgrp "$3" "$1" -R


    Maybe someone else may have some input.
    OS: CentOS 5.2 64bit
    ZCS: 5.0.10 OSS 64bit for RHEL 5

    Thanks a lot.

    Regards,
    Willi Eigenmann

  2. #2
    Join Date
    Mar 2009
    Posts
    1
    Rep Power
    6

    Default

    I have got the same problem. If someone else could help me please..

  3. #3
    Join Date
    Mar 2009
    Posts
    1
    Rep Power
    6

    Exclamation

    We have the same problem too, home directory creation IMPOSSIBLE !!!

    we found the solution nowhere... WE NEED HELP PLEASE...

  4. #4
    Join Date
    May 2008
    Location
    Des Moines, IA
    Posts
    89
    Rep Power
    7

    Default Is there an answer to this one?

    It wouldn't hurt to be non-quiet about it. I'm seeing the same thing too. Please advise.

  5. #5
    Join Date
    Jan 2008
    Location
    Australia
    Posts
    25
    Rep Power
    7

    Default

    Dear fellow Zimbra user,
    Maybe I did not make completely clear in my initial post. As a work around I have been using the following:

    Edit file /etc/samba.conf and look for the [homes] section and the add the next line.

    root preexec = /etc/samba/scripts/mk_sambadir "/home/%u" "%u" "%g"

    Next, create file mk_sambadir with content below and make it executable.
    I have created that file in a sub folder called scripts in /etc/samba.

    Location: /etc/samba/scripts
    Content of file mk_sambadir as per following lines:

    #!/bin/bash
    if [ ! -d "$1" ]
    then
    mkdir "$1"
    fi
    chmod 770 "$1" -R
    chown "$2" "$1" -R
    chgrp "$3" "$1" -R


    That has been working ever since.

    Note: The home directory on the Linux Box will be created once the user actually does logon to the domain via Windows XP or Vista. And NOT at the time you create a new user in Zimbra Administration Console.

    Note1: The Windows profile will be saved on the Linux Box once a user logout or shutdown is performed. Please see section [profiles] - path in /etc/samba/smb.conf for details.

    Regards,
    Willi Eigenmann
    Last edited by weigenmann; 05-20-2009 at 12:44 AM.

  6. #6
    Join Date
    Jan 2008
    Location
    Australia
    Posts
    25
    Rep Power
    7

    Default

    To further clarify this threat. The above mentioned workaround requires that the posix and samba zimlet are installed and configured.

    Here is a link on how to do that.
    UNIX and Windows Accounts in Zimbra LDAP and Zimbra Admin UI - Zimbra :: Wiki

    Then one can create new users according to this video:
    Created by Camtasia Studio 4

    Regards,
    Willi Eigenmann

  7. #7
    Join Date
    Apr 2008
    Location
    Newborough, Anglesey, North Wales, UK
    Posts
    66
    Rep Power
    7

    Default

    #!/bin/bash
    if [ ! -d "$1" ]
    then
    mkdir "$1"
    fi
    chmod 770 "$1" -R
    chown "$2" "$1" -R
    chgrp "$3" "$1" -R
    Many thanks for this :-)

    I do have a question though.

    For example I have theese Posix groups

    Domain Admins
    Domain Users
    Staff
    Public

    Whne using this script, it assigns the unix user:group to tyhe home directoy of the usernamerimarygroup. the primarygroup being whatever the Posix group that was assigned to the user during creation in Zimbra UI.

    Can this script be modified so that it assigns user:usergroup to the home directory?

  8. #8
    Join Date
    Jan 2008
    Location
    Australia
    Posts
    25
    Rep Power
    7

    Default

    In Part4 - Configuring pam_ldap and nss_ldap of wiki:
    UNIX and Windows Accounts in Zimbra LDAP and Zimbra Admin UI - Zimbra :: Wiki

    Down at Edit /etc/pam.d/common-session where you are asked to insert
    session required pam_mkhomedir.so skel=/etc/skel umask=0077

    When I insert the above line into /etc/pam.d/samba instead it does actually create the users home directory without the work around.

    Regards,
    Willi Eigenmann

  9. #9
    Join Date
    May 2009
    Posts
    2
    Rep Power
    6

    Default

    Thank you Mr. Eigenmann.

    Cheers,

    Chris

  10. #10
    Join Date
    May 2008
    Location
    Des Moines, IA
    Posts
    89
    Rep Power
    7

    Default I'm not sure why, but...

    Quote Originally Posted by weigenmann View Post
    Down at Edit /etc/pam.d/common-session where you are asked to insert
    session required pam_mkhomedir.so skel=/etc/skel umask=0077

    When I insert the above line into /etc/pam.d/samba instead it does actually create the users home directory without the work around.
    I've attempted to add the line as well. It didn't work for me. It appears we are using the same OS (Cent OS 5 x86_64) so I'm not sure what the difference is.

    We've reviewed my last posting though and found error in it. Here's where I am now...

    Code:
    #%PAM-1.0
    # This file is auto-generated.
    # User changes will be destroyed the next time authconfig is run.
    auth        required      pam_env.so
    auth        sufficient    pam_unix.so nullok try_first_pass
    auth        requisite     pam_succeed_if.so uid >= 500 quiet
    auth        sufficient    pam_ldap.so use_first_pass
    auth        required      pam_deny.so
    
    account     required      pam_unix.so broken_shadow
    account     sufficient    pam_succeed_if.so uid < 500 quiet
    account     [default=bad success=ok user_unknown=ignore] pam_ldap.so
    account     required      pam_permit.so
    
    password    requisite     pam_cracklib.so try_first_pass retry=3
    password    sufficient    pam_unix.so md5 shadow nullok try_first_pass use_authtok
    password    sufficient    pam_ldap.so use_authtok
    password    required      pam_deny.so
    
    session     optional      pam_keyinit.so revoke
    session     required      pam_limits.so
    session     optional      pam_mkhomedir.so
    session     [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
    session     required      pam_unix.so
    session     optional      pam_ldap.so
    Most of the essential rows and columns have been isolated and tested in this file. The one that seems to hold everything up has been tagged.

    This file is auto-generated as the comment implies. After each testing of authconfig you should:
    a) change all 'sufficient' to 'required' and
    b) comment out OR delete the line in question.
    c) test it
    Personally, I've backed up mine and restore if I need to run authconfig again. All I will say is that it works for me
    ===
    Now, for the benefits. As this file is now more flexible than in my original posting, it still satisfies the same requirements:
    1) my test users can login via the samba domain
    2) their home directories are created automatically
    3) the server can still find it's self when starting (after a reboot) and boot normally
    4) you can still login as root
    ...but now does not require any further changes to any other PAMs.

    I am still not an expert with PAM.
    Last edited by todd_dsm; 10-25-2009 at 09:38 PM.

Similar Threads

  1. Replies: 21
    Last Post: 02-04-2010, 09:06 AM
  2. [SOLVED] upgrading to latest 4.5 release
    By ak2009 in forum Installation
    Replies: 6
    Last Post: 01-17-2009, 08:08 AM
  3. Outlook 2007 Beta error
    By bersrker in forum Zimbra Connector for Outlook
    Replies: 13
    Last Post: 07-17-2008, 07:38 AM
  4. centos 5 zimbra 4.5.6 no statistics
    By rutman286 in forum Installation
    Replies: 9
    Last Post: 08-14-2007, 09:30 AM
  5. Post instsallation problems
    By Assaf in forum Installation
    Replies: 14
    Last Post: 01-29-2007, 10:38 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •