This section contains the steps to prepare Samba for use with the HA for Samba data service. Some steps require that you use Samba commands. Refer to the Docs and Books section under Learn Samba on the http://www.samba.org website for the relevant Samba man pages.
Perform this procedure on one node of the cluster, unless a specific step indicates otherwise.
Before You Begin
Ensure that the same version of Samba software is installed on all nodes that you will configure with HA for Samba.
Use no home directory, no user profile. and no login script.
Set the Password never expire parameter to true.
Set the User cannot change password parameter to true.
phys-schost-N# groupadd -g 1000 samba-fault-monitor-group phys-schost-N# useradd -u 1000 -g 1000 -s /bin/false samba-fault-monitor-user
phys-schost-N# cp -p /etc/pam.conf /etc/pam.conf.orig phys-schost-N# cp /etc/pam.conf-winbind /etc/pam.conf
phys-schost-N# svccfg -s name-service/switch setprop config/password = \"files winbind\" phys-schost-N# svccfg -s name-service/switch setprop config/group = \"files winbind\" phys-schost-N# svcadm refresh name-service/switch
phys-schost-N# svcadm disable name-service-cache
Perform this step for each Samba or winbind instance. Create the Samba configuration directory within the cluster file system or highly available local file system that is used for Samba files.
phys-schost-1# mkdir -p samba-configuration-directory phys-schost-1# cd samba-configuration-directory phys-schost-1# mkdir -p lib logs private shares var/locks
Perform this step for each Samba or winbind instance.
See Required Parameters for the Samba smb.conf File and the smb.conf(5) man page that is provided with the Samba software for an explanation of the required parameters.
Perform this step on each node that is used for Samba.
phys-schost-N# egrep -e "SMB1|ADS" /etc/inet/hosts /etc/inet/ipnodes /etc/inet/hosts:192.168.1.132 SMB1#20 /etc/inet/hosts:192.168.1.9 ADS.EXAMPLE.COM#20 /etc/inet/ipnodes:192.168.1.132 SMB1#20 /etc/inet/ipnodes:192.168.1.9 ADS.EXAMPLE.COM#20
The interfaces, netbios name, and password server parameters all require host name-to-IP address resolution.
Perform this step on all nodes or zones that are used for Samba and that reflect the ADS realm. Refer to http://www.samba.org for complete information about installing and configuring Samba as a ADS domain member.
phys-schost-1# samba-bin-directory/testparm \ samba-configuration-directory/lib/smb.conf
Perform this step from one node of the cluster.
phys-schost-1# samba-bin-directory/net -s samba-configuration-directory/lib/smb.comf \ RPC JOIN -U Administrator-on-the-PDC
Perform this step from one node of the cluster.
phys-schost-1# samba-bin-directory/net -s samba-configuration-directory/lib/smb.comf \ ADS JOIN -U Administrator-on-the-ADS
Perform this step from one node of the cluster.
phys-schost-1# samba-bin-directory/smbpasswd \ -c samba-configuration-directory/lib/smb.comf \ -a samba-fault-monitor-user
Inspect the smb.conf file to verify that guest only = yes is coded within the [scmondir] section.
Next Steps