LinuxCBT.com

Syllabus

Focus: Windows® Integration with Samba

Duration: 13-Hours

    • Introduction to Samba & Clients
      • Explore Samba server configuration
      • Identify key Samba packages & contents
      • Explore the SMB workgroup implementation
      • Discuss the roles of Local Master Browsers (LMBs) & Domain Master Browsers (DMBs)
      • Use findsmb & smbclient to reveal the active browse lists
      • Discuss NETBIOS naming rules
      • Identify system broadcast address & discuss broadcast-based NETBIOS name resolution
      • Identify & discuss the roles of the key Samba daemons
      • Use smbtree to enumerate the active workgroups, hosts & file & print shares
      • Install rdesktop client for remote desktop connectivity to Windows 2003 Server
      • Explore browse list & SMB clients from Windows 2003
      • Share file resource on Windows 2003 Server for use by Samba clients
      • Join common workgroup from Windows 2003 host
      • Use smbclient to enumerate & connect to shared resources on XP/2003 hosts
      • Explore anonymous and authenticated share enumeration using smbclient
      • Transfer files between Samba and Windows 2003 hosts using smbclient
      • Use smbget to download files non-interactively from remote SMB server
      • Use smbclient with credentials stored in a hidden file
      • Create tarball archive using tar & discuss Samba's smbtar utility
      • Create tar-compatible archives of remote SMB-share using smbtar
    •  
    • Samba File System (SMBFS) Integration
      • Discuss the features & benefits of SMBFS
      • Identify package & files
      • Create temporary mount point for remote SMB share
      • Mount remote SMB share into local Linux file system using SMBFS
      • Examine resultant Linux file-system permissions post SMBFS mount
      • Transfer files to mount point (Remote Windows 2003 system) & examine results
      • Identify SMBFS process footprint
      • Mount remote SMB share with previously-defined hidden credentials file
      • Modify system startup file to facillitate automatic SMBFS mounts upon system restart
    •  
    • Workgroup & Windows Internet Naming System (WINS) Integration
      • Identify key Samba configuration file & package membership
      • Use findsmb to reveal available workgroups
      • Alter Samba configuration file to join available workgroup
      • Identify key TCP/UDP ports used by key Samba daemons
      • Use findsmb & browse list to confirm workgroup membership
      • Enumerate default Samba shares on primary Linux system using smbclient
      • Introduction to smbpasswd utility and database
      • Use smbpasswd to add Windows user to database & confirm authentication from Windows host
      • Install WINS Server on Windows 2003 Server for use by SMB-clients
      • Explain default Samba NETBIOS name resolution order
      • Identify name resolution order directive in primary Samba configuration file
      • Configure Samba server to be a WINS client via Samba configuration file
      • Confirm WINS NETBIOS registrations of Samba & Windows hosts
    •  
    • Samba Share-Level File & Print Security Implementation
      • Discuss Samba's security modes
      • Discuss the features & benefits of share-level security
      • Alter primary Samba configuration file to support share-level security
      • Define and publish a public read-only share
      • Reload key Samba daemons & confirm connectivity to read-only share
      • Enumerate & connect to public read-only share from a remote Samba client
      • Define & publish an anonymous read-write share
      • Use chmod & chown to define appropriate permissions and ownership on the directory
      • Confirm the ability to write to read-write share from remote Windows 2003 system
      • Examine applied permissions & ownership of created objects on the Linux file system
      • Define & publish a private read-write share
      • Confirm authentication to private read-write share from remote Windows 2003 host
      • Update Samba back-end database to reflect new user - test connectivity
      • Compare & contrast Windows & Samba hidden share definition
      • Define hidden share & explore browse list from Samba & Windows hosts
      • Convert existing shares to hidden shares and examine updated browse list
      • Discuss default Samba print sharing implementation
      • Explore Common UNIX Printing System (CUPS) interface
      • Install and configure a printer
      • Discuss various CUPS back-end capabilities
      • Discuss the CUPS-generated printcap file
      • Explore key Samba print-related configuration directives
      • Share the printer using Samba
      • Connect to printer from Windows host and test printing
    •  
    • Samba Web Administration Tool (SWAT)
      • Discuss the features & benefits of Samba SWAT
      • Explore XINETD system configuration for the presence of Samba SWAT
      • Install Samba SWAT from the local package repository
      • Update XINETD configuration to enable Samba SWAT & confirm TCP listener
      • Authenticate to Samba SWAT as non-privileged and privileged users
      • Examine current smbd & nmbd connections
      • Explore & discuss the key tools included with Samba
      • Correlate Samba's primary configuration file to Samba SWAT's web interface
      • Discuss the key directives in the global section of the Samba SWAT web interface
      • Discuss additional directives in the advanced view of the Samba SWAT global area
      • Adjust the OS Level and examine the changes to the role in the browse list
      • Discuss Samba WINS server rules & limitations
      • Explore shares configuration
      • Correlate shares section of main config file to Samba SWAT's shares interface
      • Discuss the effects of various share directives
      • Discuss the variable homes share and its applications
      • Explain Samba's create mask directive & examine its application
      • Examine the advanced Samba SWAT shares view & discuss key directives
      • Define valid & invalid users per share & test connectivity from remote Windows host
      • Force ownership of file & directory objects using the force user directive
      • Explore & discuss advanced printer share directives
      • Define multiple NETBIOS names and view results in the browse list
    •  
    • Samba User-Level Security Mode
      • Explain the advantages and features of user-level security
      • Discuss the user-accounts back-ends supported by Samba
      • Convert Samba from share-level to user-level security mode
      • Test user-level connectivity to Samba shares/services
      • Discuss IPC$ connections and applications
      • Explore passwd & shadow user-accounts databases
      • Explore the smbpasswd database
    •  
    • Samba - Active Directory (AD) - BIND Integration
      • Discuss the DNS requirements of Active Directory
      • Install BIND from RPM repository
      • Configure BIND as a caching-only name server
      • Define usable BIND named.conf configuration file with appropriate zones
      •  
      • Define required Active Directory dynamically updateable zones
      • Install Active Directory on Windows server
      • Confirm BIND DNS connectivity
      • Configure Kerberos to support Active Directory Realm & test connectivity
      • Convert Samba from basic user-level to ADS security mode
      • Use the net command to create Samba machine account in the Active Directory
      • Confirm authentication against Active Directory when accessing resources
      • Create AD -> Linux corresponding users for transparent access
    •  
    • Samba - Winbindd
      • Discuss the features & advantages of Winbind
      • Discuss the accounts resolutions process
      • Alter the name server switch process to facilitate winbind
      • Discuss UNIX/Linux uids & gids
      • Explain the application of idmaps - uids & gids
      • Configure Samba to use Winbind
      • Enumerate remote Active Directory users using wbinfo & getent
      • Examine auto-assigned uids & gids via idmap
      • Connect to Samba server using Active Directory users & Winbind
      • Configure SSHD to support Winbind-provided users from Active Directory
      • Configure Winbind to use the default Active Directory domain for authentication
      • Configure VSFTPD to use the default Active Directory domain for authentication
    •  
    • Samba - Linux File System & Share/Service Permissions
      • Explain how Samba interacts with file-system permissions
      • Explain UNIX/Linux file-system permissions - UGO
      • Use chown/chmod to adjust file-system permissions
      • Discuss the applicable Samba share/service permissions directives
      • Apply various share/service permissions & test results
    •  
    • Samba - Miscellaneous
      • Create share/service with appropriate permissions for collaborations
      • Examine collaborative permission from Windows client
      • Configure Samba as a WINS server & discuss capabilities
      • Configure Samba a print server for SMB(Windows/Linux/UNIX) clients
      • Explore Samba logging
      • Mount remote CIFS shares into the Linux file system
      • Share mounted CIFS directories using Samba
    •  

LinuxCBT Samba Edition

  •  
DEMO