12.3 Preparing Your System for Using ShadowFS

Configure Novell Samba to prepare your system for using ShadowFS. For detailed instructions for installing, configuring, or setting up Novell Samba, see the OES2 SP3: Samba Administration Guide.

  1. Verify that Novell Samba services are installed and functioning properly:

    • Samba server is running.

    • Shares can be created.

    • Users can access Samba shares.

    Use the Novell Samba plug-in for iManager to configure and verify Samba services. In iManager, go to the File Protocols > Samba > General page with the server selected.

  2. Novell Samba users must be Linux-enabled through Linux User Management in order to access data.

    IMPORTANT:You must Linux-enable users before adding a Samba Password policy assignment for the Samba server. If you attempt to add a user to a group, and the user is not already Linux-enabled, you cannot continue.

    The users must be members of a primary group that is Linux-enabled on the target server or workstation object where both the Primary Group ID and Primary Group Name are assigned to the user. This is the primary group that is later assigned rights to the Samba share. Only primary groups can be assigned as the Directory group for the Samba share.

    Adding users to Samba automatically Linux-enables them with Linux User Management (LUM), and it also Samba enables them. You can also Linux-enable users by using Linux User Management.

    To verify Linux-enabled users, go to the Modify User > Linux Profile > General page with the server selected. Ensure that the values match the users’ Group Assignment.

  3. Make sure users have a Samba Password policy assignment at the eDirectory user, group or container level.

  4. Make sure users have a Universal Password.

    Users must have a Universal Password set in order for Samba to work properly.

  5. Linux-enable the group with Linux User Management.

    You must assign a Unix Workstation object for the group. To verify, use iManager to go to the Modify Group > Linux Profile > General page, confirm that the Enable Linux Profile option is enabled, and confirm that a Unix Workstation object is assigned and has a Group ID.

    NOTE:For the purposes of testing, you can PAM-enable services on the server, so that test users can SSH into the server and validate access to directory paths to shares. For information about configuring SSH for a user, see SSH Services on OES 2 in the OES 2 SP3: Planning and Implementation Guide.