blaadom
asked on
samba ntconfig.pol
Hi all,
I have a quick question. I have a samba server acting as domain controller which is working fine. I want to implement policies so i created NTConfig.POL and have it placed in the root of the netlogon folder and I have the permissions set to 777. However it is not implemeting these policies when I logon to the domain.
The domain members are windows xp and the policy was created on one of these computers then copied across.
Anyone have any ideas?
Thanks a lot.
I have a quick question. I have a samba server acting as domain controller which is working fine. I want to implement policies so i created NTConfig.POL and have it placed in the root of the netlogon folder and I have the permissions set to 777. However it is not implemeting these policies when I logon to the domain.
The domain members are windows xp and the policy was created on one of these computers then copied across.
Anyone have any ideas?
Thanks a lot.
dasmaer
How are you telling Samba to use these policies?
ASKER
Thats what i need to know. How do you tell samba to use this file? thanks for the quick response.
When a Windows NT4/200x/XP machine logs onto the network, the client looks in the NETLOGON share on the authenticating domain controller for the presence of the NTConfig.POL file. If one exists, it is downloaded, parsed, and then applied to the user's part of the registry.
So make sure you have a NETLOGIN share on the domain controller (it should be created by default), and make sure that you have yourNTConfig.POL file there... or are you doing this already?
So make sure you have a NETLOGIN share on the domain controller (it should be created by default), and make sure that you have yourNTConfig.POL file there... or are you doing this already?
ASKER
yep i have a netlogon folder which has NTConfig.POL in it. Both the folder and the file are chmod to 777 yet for some reason the windows client doesn't pick it up. Is there even any way of checking if the client is trying to get the.pol file
By default the client will look there and download it, I don't know if you can tell if its fetching it. It may be the case that the client is trying to execute it though, I take it you chmod'd to 755 before and had no luck?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
yea tried it at 755 and then changed to 777 just in case. from what i have been reading it just seems as easy as creating the pol file and placing it in the netlogon share. im just wondering am i missing something simple. thanks a lot for your help your giving
ASKER
oh ok i will try 744 now, 1 sec
Just another thought, have you restarted Samba since placing the file there? Or is that not practical in your situation?
ASKER
hey your a god it worked!!! thanks a bunch, excellent help, fully deserve 500 points
np. was it the 744 that fixed it?
ASKER
yep it was the 744, again thanks a bunch, your an expert! :)