Chinaunix首页 | 论坛 | 博客

zorro大虾的ChinaUnix博客licheng.blog.chinaunix.net

首页 |  博文目录 |  关于我

zorro大虾

  • 博客访问: 70331
  • 博文数量: 12
  • 博客积分: 266
  • 博客等级: 二等列兵
  • 技术积分: 181
  • 用 户 组: 普通用户
  • 注册时间: 2011-06-27 16:20
文章分类

全部博文(12)

文章存档

2012年(12)

我的朋友
最近访客
推荐博文
相关博文
samba实例

分类: LINUX

2012-11-22 10:05:38

samba配置实例需求:
       搭建办公室文件共享系统,有以下用户方:
       管理人员(licheng)
       开发人员(devA,devB)
       系统人员(sysA,sysB)
       行政人员(mmA,mmB,mmC,mmD,mmE)
       财务人员(moneyA)
       工程人员(engineerA,engineerB)
      
       实现功能:
       1.licheng能管理所有的文件共享
       2.每个部门都一个供自己部门的人员进行读写的文件共享目录,对其他部门隐私
       3.有一个文件共享目录供所有部门共享


服务器环境:
       Ubuntu 12.10
       3.5.0-18-generic
       普通PC硬件


实现方案:
      1.安装samba软件

利用apt-get安装

  1. # apt-get install samba
        2.创建相应三无用户和组,并设置权限

点击(此处)折叠或打开

  1. root@licheng-G41D3:~# for gg in dev syser mm money engineer  #创建相应组用户
  2. > do
  3. > groupadd $gg
  4. > done

  6. useradd -g dev -s /sbin/nologin devA    #把对应的用户加到组用户中
  7. useradd -g dev -s /sbin/nologin devB


  10. root@licheng-G41D3:~# mkdir /smbdata/
  11. root@licheng-G41D3:~# chown licheng.licheng /smbdata  #设置目录权限


  14. root@licheng-G41D3:~# mkdir /smbdata/mm/             
  15. root@licheng-G41D3:~# chown licheng.mm /smbdata/mm  #设置目录组权限
  16. root@licheng-G41D3:~# chmod 770 /smbdata/mm/

  18. root@licheng-G41D3:~# mkdir /smbdata/dev/
  19. root@licheng-G41D3:~# chown licheng.dev /smbdata/dev
  20. root@licheng-G41D3:~# chmod 770 /smbdata/dev/

其他用户和组都进行类似设置





        3.配置smb.conf

编辑/etc/samba/smb.conf

  1. [global]
  2.    workgroup = WORKGROUP
  3.    server string = %h server (Samba, Ubuntu)
  4.    dns proxy = no
  5.    log file = /var/log/samba/log.%m
  6.    max log size = 1000
  7.    syslog = 0
  8.    panic action = /usr/share/samba/panic-action %d
  9.    security = user
  10.    encrypt passwords = true
  11.    passdb backend = tdbsam

  13. [admin]
  14.    comment = sa
  15.    path = /smbdata
  16.    valid users = licheng
  17.    create mask = 0664
  18.    writeable = yes
  19.    browseable = no
  20.    public=no

  22. [开发组]
  23.    comment = deverloper
  24.    path = /smbdata/dev/
  25.    valid users = licheng,@dev   #--@dev代表组用户
  26.    create mask = 0664
  27.    writeable = yes
  28.    browseable = yes
  29.    public=yes

  31. [系统组]
  32.    comment = systemadmin
  33.    path = /smbdata/sys/
  34.    valid users = @syser,licheng
  35.    create mask = 0664
  36.    writeable = yes
  37.    browseable = yes
  38.    public=yes

  40. [行政组]
  41.    comment = mm
  42.    path = /smbdata/mm/
  43.    valid users = licheng,@mm
  44.    create mask = 0664
  45.    writeable = yes
  46.    browseable = yes
  47.    public=yes

  49. [财务组]
  50.    comment = money
  51.    path = /smbdata/money/
  52.    valid users = @money,licheng
  53.    create mask = 0664
  54.    writeable = yes
  55.    browseable = yes
  56.    public=yes

  58. [工程组]
  59.    comment = engineer
  60.    path = /smbdata/engineer/
  61.    valid users = @engineer,licheng
  62.    create mask = 0664
  63.    writeable = yes
  64.    browseable = yes
  65.    public=yes

  67. [分享组]
  68.    comment = share
  69.    path = /smbdata/share/
  70.    create mask = 0664
  71.    browseable = yes
  72.    public=yes
  73.    read only = no
  74.    guest ok = yes
            4. 通过pdbedie配置tdbsam类型的各部门帐号密码

pdbedit进行设置帐号密码

  1. root@licheng-G41D3:~# pdbedit -a devA
  2. new password:
  3. retype new password:
  4. Unix username: devA
  5. NT username:
  6. Account Flags: [U ]
  7. User SID: S-1-5-21-732587476-2757912329-675466344-1000
  8. Primary Group SID: S-1-5-21-732587476-2757912329-675466344-513
  9. Full Name:
  10. Home Directory: \\licheng-g41d3\deva
  11. HomeDir Drive:
  12. Logon Script:
  13. Profile Path: \\licheng-g41d3\deva\profile
  14. Domain: LICHENG-G41D3
  15. Account desc:
  16. Workstations:
  17. Munged dial:
  18. Logon time: 0
  19. Logoff time: never
  20. Kickoff time: never
  21. Password last set:, 22 11月 2012 16:07:22 CST
  22. Password can change:, 22 11月 2012 16:07:22 CST
  23. Password must change: never
  24. Last bad password : 0
  25. Bad password count : 0
  26. Logon hours : FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
            设置完成后可以通过pdbedit -L 进行查看已设置的帐号

查看tdbsam类型帐号

  1. root@licheng-G41D3:~# pdbedit -L
  2. devA:1001:
  3. sysA:1003:
  4. sysB:1004:
  5. devB:1002:
  6. licheng:1000:licheng
  7. mmA:1005:
  8. mmB:1006:
  9. mmC:1007:
  10. mmD:1008:
  11. mmE:1009:
  12. moneyA:1010:
  13. engineerA:1011:
  14. engineerB:1012:
           5.启动samba
  1. root@licheng-G41D3:~# /etc/init.d/nmbd start
  2. Rather than invoking init scripts through /etc/init.d, use the service(8)
  3. utility, e.g. service nmbd start

  5. Since the script you are attempting to invoke has been converted to an
  6. Upstart job, you may also use the start(8) utility, e.g. start nmbd
  7. nmbd start/running, process 7796
  8. root@licheng-G41D3:~# /etc/init.d/smbd start
  9. Rather than invoking init scripts through /etc/init.d, use the service(8)
  10. utility, e.g. service smbd start

  12. Since the script you are attempting to invoke has been converted to an
  13. Upstart job, you may also use the start(8) utility, e.g. start smbd
  14. smbd start/running, process 7811

           6.检测. 当在windows上进行\\检测的时候,如果你已经连接了一个帐号密码,要测试第二个的时候会报以下错误:
      "不允许一个用户使用一个以上用户名与一个服务器或共享资源的多重连接......."
      是因为windows的机制造成的,可以用以下命令后再做第二个帐号检测:
  1. net use * /del /y
         
           7.如果有新的用户加入,只要将这个用户的组权限设置到对应的部门目录即可.











         
阅读(2295) | 评论(0) | 转发(0) |
0

上一篇:linux利用pyodbc连接sqlserver

下一篇:没有了

给主人留下些什么吧!~~
关于我们 | 关于IT168 | 联系方式 | 广告合作 | 法律声明 | 免费注册

Copyright 2001-2010 ChinaUnix.net All Rights Reserved 北京皓辰网域网络信息技术有限公司. 版权所有

感谢所有关心和支持过ChinaUnix的朋友们

16024965号-6