More edits.

(This used to be commit f774111756)

docs/Samba-Guide/SBE-MigrateNT4Samba3.xml

@@ -399,108 +399,103 @@
 		no account information can be deleted.
 		</para></step>
 
-<example id="sbent4smb">
+<smbconfexample id="sbent4smb">
 <title>NT4 Migration Samba-3 Server <filename>smb.conf</filename> &smbmdash; Part: A</title>
-<screen>
+<smbconfcomment>Global parameters</smbconfcomment>
-# Global parameters
+<smbconfsection name="[global]"/>
-[global]
+        <smbconfoption name="workgroup">DAMNATION</smbconfoption>
-        workgroup = DAMNATION
+        <smbconfoption name="netbios name">MERLIN</smbconfoption>
-        netbios name = MERLIN
+        <smbconfoption name="passdb backend">ldapsam:ldap://localhost</smbconfoption>
-        passdb backend = ldapsam:ldap://localhost
+        <smbconfoption name="username map">/etc/samba/smbusers</smbconfoption>
-        username map = /etc/samba/smbusers
+        <smbconfoption name="log level">1</smbconfoption>
-        log level = 1
+        <smbconfoption name="syslog">0</smbconfoption>
-        syslog = 0
+        <smbconfoption name="log file">/var/log/samba/%m</smbconfoption>
-        log file = /var/log/samba/%m
+        <smbconfoption name="max log size">0</smbconfoption>
-        max log size = 0
+        <smbconfoption name="smb ports">139 445</smbconfoption>
-        smb ports = 139 445
+        <smbconfoption name="name resolve order">wins bcast hosts</smbconfoption>
-        name resolve order = wins bcast hosts
+        <smbconfoption name="show add printer wizard">Yes</smbconfoption>
-        show add printer wizard = Yes
+        <smbconfoption name="add user script">/opt/IDEALX/sbin/smbldap-useradd -m '%u'</smbconfoption>
-        add user script = /opt/IDEALX/sbin/smbldap-useradd -m '%u'
+        <smbconfoption name="#delete user script">/opt/IDEALX/sbin/smbldap-userdel '%u'</smbconfoption>
-#       delete user script = /opt/IDEALX/sbin/smbldap-userdel '%u'
+        <smbconfoption name="add group script">/opt/IDEALX/sbin/smbldap-groupadd '%g'</smbconfoption>
-        add group script = /opt/IDEALX/sbin/smbldap-groupadd -p '%g' -t domain
+        <smbconfoption name="#delete group script">/opt/IDEALX/sbin/smbldap-groupdel '%g'</smbconfoption>
-#       delete group script = /opt/IDEALX/sbin/smbldap-groupdel '%g'
+        <smbconfoption name="add user to group script">/opt/IDEALX/sbin/</smbconfoption>
-        add user to group script = /opt/IDEALX/sbin/smbldap-groupmod -m '%u' '%g' -t domain
+<member><parameter>smbldap-groupmod -m '%u' '%g'</parameter></member>
-#       delete user from group script = /opt/IDEALX/sbin/smbldap-groupmod -x '%u' '%g' -t domain
+        <smbconfoption name="#delete user from group script">/opt/IDEALX/</smbconfoption>
-        set primary group script = /opt/IDEALX/sbin/smbldap-usermod -g '%g' '%u'
+<member><parameter>sbin/smbldap-groupmod -x '%u' '%g'</parameter></member>
-        add machine script = /opt/IDEALX/sbin/smbldap-useradd -w '%u'
+        <smbconfoption name="set primary group script">/opt/IDEALX/</smbconfoption>
-        logon script = scripts\logon.cmd
+<member><parameter>sbin/smbldap-usermod -g '%g' '%u'</parameter></member>
-        logon path = \\%L\profiles\%U
+        <smbconfoption name="add machine script">/opt/IDEALX/sbin/</smbconfoption>
-        logon home = \\%L\%U
+<member><parameter>smbldap-useradd -w '%u'</parameter></member>
-        logon drive = X:
+        <smbconfoption name="logon script">scripts\logon.cmd</smbconfoption>
-        domain logons = Yes
+        <smbconfoption name="logon path">\\%L\profiles\%U</smbconfoption>
-        domain master = No
+        <smbconfoption name="logon home">\\%L\%U</smbconfoption>
-#       wins support = Yes
+        <smbconfoption name="logon drive">X:</smbconfoption>
-        wins server = 192.168.123.124
+        <smbconfoption name="domain logons">Yes</smbconfoption>
-        ldap admin dn = cn=Manager,dc=terpstra-world,dc=org
+        <smbconfoption name="domain master">No</smbconfoption>
-        ldap group suffix = ou=Groups
+        <smbconfoption name="#wins support">Yes</smbconfoption>
-        ldap idmap suffix = ou=Idmap
+        <smbconfoption name="wins server">192.168.123.124</smbconfoption>
-        ldap machine suffix = ou=People
+        <smbconfoption name="ldap admin dn">cn=Manager,dc=terpstra-world,dc=org</smbconfoption>
-        ldap passwd sync = Yes
+        <smbconfoption name="ldap group suffix">ou=Groups</smbconfoption>
-        ldap suffix = dc=terpstra-world,dc=org
+        <smbconfoption name="ldap idmap suffix">ou=Idmap</smbconfoption>
-        ldap ssl = no
+        <smbconfoption name="ldap machine suffix">ou=People</smbconfoption>
-        ldap timeout = 20
+        <smbconfoption name="ldap passwd sync">Yes</smbconfoption>
-        ldap user suffix = ou=People
+        <smbconfoption name="ldap suffix">dc=terpstra-world,dc=org</smbconfoption>
-        idmap backend = ldap:ldap://localhost
+        <smbconfoption name="ldap ssl">no</smbconfoption>
-        idmap uid = 15000-20000
+        <smbconfoption name="ldap timeout">20</smbconfoption>
-        idmap gid = 15000-20000
+        <smbconfoption name="ldap user suffix">ou=People</smbconfoption>
-        winbind nested groups = Yes
+        <smbconfoption name="idmap backend">ldap:ldap://localhost</smbconfoption>
-        ea support = Yes
+        <smbconfoption name="idmap uid">15000-20000</smbconfoption>
-        map acl inherit = Yes
+        <smbconfoption name="idmap gid">15000-20000</smbconfoption>
-</screen>
+        <smbconfoption name="winbind nested groups">Yes</smbconfoption>
-</example>
+        <smbconfoption name="ea support">Yes</smbconfoption>
+        <smbconfoption name="map acl inherit">Yes</smbconfoption>
+</smbconfexample>
 
-<example id="sbent4smb2">
+<smbconfexample id="sbent4smb2">
 <title>NT4 Migration Samba-3 Server <filename>smb.conf</filename> &smbmdash; Part: B</title>
-<screen>
+<smbconfsection name="[apps]"/>
-[apps]
+        <smbconfoption name="comment">Application Data</smbconfoption>
-        comment = Application Data
+        <smbconfoption name="path">/data/home/apps</smbconfoption>
-        path = /data/home/apps
+		<smbconfoption name="read only">No</smbconfoption>
-        read only = No
 
-[media]
+<smbconfsection name="[homes]"/>
-        comment = Media Files
+        <smbconfoption name="comment">Home Directories</smbconfoption>
-        path = /data/home2
+        <smbconfoption name="path">/home/users/%U/Documents</smbconfoption>
-        read only = No
+        <smbconfoption name="valid users">%S</smbconfoption>
+        <smbconfoption name="read only">No</smbconfoption>
+        <smbconfoption name="browseable">No</smbconfoption>
 
-[homes]
+<smbconfsection name="[printers]"/>
-        comment = Home Directories
+        <smbconfoption name="comment">SMB Print Spool</smbconfoption>
-        path = /home/users/%U/Documents
+        <smbconfoption name="path">/var/spool/samba</smbconfoption>
-        valid users = %S
+        <smbconfoption name="guest ok">Yes</smbconfoption>
-        read only = No
+        <smbconfoption name="printable">Yes</smbconfoption>
-        browseable = No
+        <smbconfoption name="use client driver">No</smbconfoption>
+        <smbconfoption name="browseable">No</smbconfoption>
 
-[printers]
+<smbconfsection name="[netlogon]"/>
-        comment = SMB Print Spool
+        <smbconfoption name="comment">Network Logon Service</smbconfoption>
-        path = /var/spool/samba
+        <smbconfoption name="path">/var/lib/samba/netlogon</smbconfoption>
-        guest ok = Yes
+        <smbconfoption name="guest ok">Yes</smbconfoption>
-        printable = Yes
+        <smbconfoption name="locking">No</smbconfoption>
-        use client driver = No
-        browseable = No
 
-[netlogon]
+<smbconfsection name="[profiles]"/>
-        comment = Network Logon Service
+        <smbconfoption name="comment">Profile Share</smbconfoption>
-        path = /var/lib/samba/netlogon
+        <smbconfoption name="path">/var/lib/samba/profiles</smbconfoption>
-        guest ok = Yes
+        <smbconfoption name="read only">No</smbconfoption>
-        locking = No
+        <smbconfoption name="profile acls">Yes</smbconfoption>
 
-[profiles]
+<smbconfsection name="[profdata]"/>
-        comment = Profile Share
+        <smbconfoption name="comment">Profile Data Share</smbconfoption>
-        path = /var/lib/samba/profiles
+        <smbconfoption name="path">/var/lib/samba/profdata</smbconfoption>
-        read only = No
+        <smbconfoption name="read only">No</smbconfoption>
-        profile acls = Yes
+        <smbconfoption name="profile acls">Yes</smbconfoption>
 
-[profdata]
+<smbconfsection name="[print$]"/>
-        comment = Profile Data Share
+        <smbconfoption name="comment">Printer Drivers</smbconfoption>
-        path = /var/lib/samba/profdata
+        <smbconfoption name="path">/var/lib/samba/drivers</smbconfoption>
-        read only = No
+</smbconfexample>
-        profile acls = Yes
 
-[print$]
-        comment = Printer Drivers
-        path = /var/lib/samba/drivers
-        write list = root
-</screen>
-</example>
 		<step><para>
 		<indexterm><primary>slapd.conf</primary></indexterm>
 		Configure OpenLDAP in preparation for the migration. An example

docs/Samba-Guide/SBE-SecureOfficeServer.xml

@@ -821,6 +821,7 @@ echo -e "\nNAT firewall done.\n"
 <smbconfoption name="bind interfaces only">Yes</smbconfoption>
 <smbconfoption name="passdb backend">tdbsam</smbconfoption>
 <smbconfoption name="pam password change">Yes</smbconfoption>
+<smbconfoption name="passwd program">/usr/bin/passwd %u</smbconfoption>
 <smbconfoption name="passwd chat"></smbconfoption>
 <member><parameter>*New*Password* %n\n *Re-enter*new*password*%n\n *Password*changed*</parameter></member>
 <smbconfoption name="username map">/etc/samba/smbusers</smbconfoption>
@@ -2207,14 +2208,15 @@ Nmap run completed -- 1 IP address (1 host up) scanned in 168 seconds
 	be done with notebook computers as long as they are identical or sufficiently similar.
 	</para>
 
-	<procedure>
+	<procedure id="sbewinclntprep">
+	<title>Windows Client Configuration Procedure</title>
+
 		<step><para>
-		Install MS Windows XP Professional. During installation, configure the client to use DHCP for 
-		TCP/IP protocol configuration.
 		<indexterm><primary>WINS</primary></indexterm>
 		<indexterm><primary>DHCP</primary></indexterm>
-		DHCP configures all Windows clients to use the WINS Server address that has been defined
+		Install MS Windows XP Professional. During installation, configure the client to use DHCP for 
-		for the local subnet.
+		TCP/IP protocol configuration. DHCP configures all Windows clients to use the WINS Server
+		address that has been defined for the local subnet.
 		</para></step>
 
 		<step><para>
@@ -2229,8 +2231,8 @@ Nmap run completed -- 1 IP address (1 host up) scanned in 168 seconds
 		<step><para>
 		Verify <constant>DIAMOND</constant> is visible in <guimenu>My Network Places</guimenu>, 
 		that it is possible to connect to it and see the shares <guimenuitem>accounts</guimenuitem>,
-		<guimenuitem>apps</guimenuitem>, and <guimenuitem>finsvcs</guimenuitem>,
+		<guimenuitem>apps</guimenuitem>, and <guimenuitem>finsvcs</guimenuitem>, and that it is
-		and that it is possible to open each share to reveal its contents.
+		possible to open each share to reveal its contents.
 		</para></step>
 
 		<step><para>
@@ -2253,94 +2255,95 @@ Nmap run completed -- 1 IP address (1 host up) scanned in 168 seconds
 		Now install all four printers onto the staging system. The printers you install
 		include the accounting department HP LaserJet 6 and Minolta QMS Magicolor printers. You will
 		also configure identical printers that are located in the financial services department.
-		Install printers on each machine using the following steps:
+		Install printers on each machine using the steps shown in <link linkend="sbewinclntptrprep"/>.
-		</para>
+		</para></step>
 
-		<procedure>
+		<step><para>
-				<step><para>
+		<indexterm><primary>defragmentation</primary></indexterm>
-				Click <menuchoice>
+		When you are satisfied that the staging systems are complete, use the appropriate procedure to
-					<guimenu>Start</guimenu>
+		remove the client from the domain. Reboot the system and then log on as the local administrator
-					<guimenuitem>Settings</guimenuitem>
+		and clean out all temporary files stored on the system. Before shutting down, use the disk
-					<guimenuitem>Printers</guimenuitem>
+		defragmentation tool so that the file system is in optimal condition before replication.
-					<guiicon>Add Printer</guiicon>
+		</para></step>
-					<guibutton>Next</guibutton>
-					</menuchoice>. Do not click <guimenuitem>Network printer</guimenuitem>.
-					Ensure that <guimenuitem>Local printer</guimenuitem> is selected.
-				</para></step>
 
-				<step><para>
+		<step><para>
-				Click <guibutton>Next</guibutton>. In the
+		Boot the workstation using the Norton (Symantec) Ghosting diskette (or CD-ROM) and image the
-				<guimenuitem>Manufacturer:</guimenuitem> panel, select <constant>HP</constant>.
+		machine to a network share on the server.
-				In the <guimenuitem>Printers:</guimenuitem> panel, select the printer called
+		</para></step>
-				<constant>HP LaserJet 6</constant>. Click <guibutton>Next</guibutton>.
-				</para></step>
 
-				<step><para>
+		<step><para>
-				In the <guimenuitem>Available ports:</guimenuitem> panel, select
+		<indexterm><primary>Windows security identifier</primary><see>SID</see></indexterm>
-				<constant>FILE:</constant>. Accept the default printer name by clicking
+		<indexterm><primary>SID</primary></indexterm>
-				<guibutton>Next</guibutton>. When asked, <quote>Would you like to print a
+		You may now replicate the image to the target machines using the appropriate Norton Ghost 
-				test page?,</quote> click <guimenuitem>No</guimenuitem>. Click
+		procedure. Make sure to use the procedure that ensures each machine has a unique
-				<guibutton>Finish</guibutton>.
+		Windows security identifier (SID). When the installation of the disk image has completed, boot the PC. 
-				</para></step>
+		</para></step>
 
-				<step><para>
+		<step><para>
-				You may be prompted for the name of a file to print to. If so, close the
+		Log onto the machine as the local Administrator (the only option), and join the machine to
-				dialog panel. Right-click <menuchoice>
+		the Domain, following the procedure set out in Appendix A, <link linkend="domjoin"/>. The system is now 
-					<guiicon>HP LaserJet 6</guiicon>
+		ready for the user to log on, provided you have created a network logon account for that 
-					<guimenuitem>Properties</guimenuitem>
+		user, of course.
-					<guisubmenu>Details (Tab)</guisubmenu>
+		</para></step>
-					<guimenuitem>Add Port</guimenuitem>
-					</menuchoice>.
-				</para></step>
 
-				<step><para>
+		<step><para>
-				In the <guimenuitem>Network</guimenuitem> panel, enter the name of
+		Instruct all users to log onto the workstation using their assigned username and password.
-				the print queue on the Samba server as follows: <constant>\\DIAMOND\hplj6a</constant>.
+		</para></step>
-				Click <menuchoice> 
+	</procedure>
-					<guibutton>OK</guibutton>
-					<guibutton>OK</guibutton>
-					</menuchoice> to complete the installation.
-				</para></step>
 
-				<step><para>
+	<procedure id="sbewinclntptrprep">
-				Repeat the printer installation steps above for both HP LaserJet 6 printers
+	<title>Windows Client Printer Preparation Procedure</title>
-				as well as for both QMS Magicolor laser printers.
-				</para></step>
-			</procedure>
-			</step>
 
-			<step><para>
+		<step><para>
-			<indexterm><primary>defragmentation</primary></indexterm>
+		Click <menuchoice>
-			When you are satisfied that the staging systems are complete, use the appropriate procedure to
+			<guimenu>Start</guimenu>
-			remove the client from the domain. Reboot the system and then log on as the local administrator
+			<guimenuitem>Settings</guimenuitem>
-			and clean out all temporary files stored on the system. Before shutting down, use the disk
+			<guimenuitem>Printers</guimenuitem>
-			defragmentation tool so that the file system is in optimal condition before replication.
+			<guiicon>Add Printer</guiicon>
-			</para></step>
+			<guibutton>Next</guibutton>
+			</menuchoice>. Do not click <guimenuitem>Network printer</guimenuitem>.
+			Ensure that <guimenuitem>Local printer</guimenuitem> is selected.
+		</para></step>
 
-			<step><para>
+		<step><para>
-			Boot the workstation using the Norton (Symantec) Ghosting diskette (or CD-ROM) and image the
+		Click <guibutton>Next</guibutton>. In the
-			machine to a network share on the server.
+		<guimenuitem>Manufacturer:</guimenuitem> panel, select <constant>HP</constant>.
-			</para></step>
+		In the <guimenuitem>Printers:</guimenuitem> panel, select the printer called
+		<constant>HP LaserJet 6</constant>. Click <guibutton>Next</guibutton>.
+		</para></step>
 
-			<step><para>
+		<step><para>
-			<indexterm><primary>Windows security identifier</primary><see>SID</see></indexterm>
+		In the <guimenuitem>Available ports:</guimenuitem> panel, select
-			<indexterm><primary>SID</primary></indexterm>
+		<constant>FILE:</constant>. Accept the default printer name by clicking
-			You may now replicate the image to the target machines using the appropriate Norton Ghost 
+		<guibutton>Next</guibutton>. When asked, <quote>Would you like to print a
-			procedure. Make sure to use the procedure that ensures each machine has a unique
+		test page?,</quote> click <guimenuitem>No</guimenuitem>. Click
-			Windows security identifier (SID). When the installation of the disk image has completed, boot the PC. 
+		<guibutton>Finish</guibutton>.
-			</para></step>
+		</para></step>
 
-			<step><para>
+		<step><para>
-			Log onto the machine as the local Administrator (the only option), and join the machine to
+		You may be prompted for the name of a file to print to. If so, close the
-			the Domain, following the procedure set out in Appendix A, <link linkend="domjoin"/>. The system is now 
+		dialog panel. Right-click <menuchoice>
-			ready for the user to log on, provided you have created a network logon account for that 
+			<guiicon>HP LaserJet 6</guiicon>
-			user, of course.
+			<guimenuitem>Properties</guimenuitem>
-			</para></step>
+			<guisubmenu>Details (Tab)</guisubmenu>
+			<guimenuitem>Add Port</guimenuitem>
+			</menuchoice>.
+		</para></step>
 
-			<step><para>
+		<step><para>
-			Instruct all users to log onto the workstation using their assigned username and password.
+		In the <guimenuitem>Network</guimenuitem> panel, enter the name of
-			</para></step>
+		the print queue on the Samba server as follows: <constant>\\DIAMOND\hplj6a</constant>.
-		</procedure>
+		Click <menuchoice> 
+			<guibutton>OK</guibutton>
+			<guibutton>OK</guibutton>
+			</menuchoice> to complete the installation.
+		</para></step>
+
+		<step><para>
+		Repeat the printer installation steps above for both HP LaserJet 6 printers
+		as well as for both QMS Magicolor laser printers.
+		</para></step>
+	</procedure>
 
 	</sect2>