Logon scripts question

My opinion is that it has to be done as soon as possible.
If i was a programmer I would help.

You may help with testing.

Testing is my profession - any help from me, you have it.

1 Like

I tried to push our request here. It’s on my list now but I have to collect some information and think about solutions.

In the meanwhile you may have a look at the wiki (maybe contribute with testing?) or at the German chat:

https://wiki.nethserver.org/doku.php?id=de:howto:volunteering

Thank you.
I will check this as it can improve my German as it is not fluent although my family name is Deutsch :slight_smile:

In the end it was all about the language.
Thank you.

1 Like

Hello to all!
I’m just about testing auto-map shares on the server (incl. home folder) . Everything seems to be pretty easy and correct so far (so good:) . I see this post is about firing scripts after login , but if this is all about just mapping the shares than we do not need scripts at all. As soon as we successfully install RSAT on domain member, GPOs are ready to be used in order to automatically map shares. Best practice would be to use OUs because then GPO usage is very well controlled.
The steps to take:

  1. install DC - this operation results in ADDC ("container"ized AD engine (i.e. nsdc-server1) with separate IP address) and FileServer (server1 - our CentOS itself) itself that is actually joined to this AD domain we just created. (I like this scenario and please correct me if this explanation is wrong)
  2. install RSAT and start managing this domain only from this tool. There is no need to create users from neth gui because it is questionable whether we need linux users with their linux home folders. (I think we don’t)
  3. Home-folders -> In MsWin world we create one share for home folders , accessible (rw) for every domain user. That is what I did here , from neth-gui (i.e. \dc01\homes
    After that I create new user with RSAT-ADUC tool and put this “key”-string here:
    image
    This %username% tells AD to make folder in \dc01\homes named by the user whose properties we edit, and generate such ntfs permissions that only domain-admin and this user can access this folder (this is actually what home-folder is about :slight_smile:
    Next time this user logs in , his home folder maps automatically .
  4. Mapping other shares -> use GPOs without risk ! :slight_smile:

    If actual user belongs to the OU which has this GPO linked, after login this share will be automatically mapped.
  5. If we want to use script for something else , it works too … just put script name here:
    image
    and create it previously in this locatin (as domain admin):
    image
    Script login1.bat run after user login.
    Afterwards , you can find it here (under the hood :slight_smile:

[root@dc01 tonci1]# find / -name login1.bat
/var/lib/machines/nsdc/var/lib/samba/sysvol/ns01dom.local/scripts/login1.bat
[root@dc01 tonci1]#

From this experience of mine I can say that RSAT itself did all the work (w/o any mistake :slight_smile: ) which is very good from my point of view… Maybe we could ask ourselves : where is the catch? :slight_smile:

Generating users from RSAT eliminates the confusion when opening network-neihgbourhood because then “linux-home” folders are not seen , 'cause there is not any. There is not too many shares visible …

I something goes wrong we can always reach our data here:
[root@dc01 tonci1]# ls -al /var/lib/nethserver/ibay/
total 0
drwxrwxr-x. 4 root root 33 Mar 16 21:50 .
drwxr-xr-x. 8 root root 89 Feb 3 21:17 …
drwxrws— 7 root domain users@ns01dom.local 76 Mar 16 23:49 homes
drwxrws—+ 3 root domain users@ns01dom.local 21 Mar 15 09:34 share1

“homes” is this global-home share that contains all user (home) folders with previously explained permissions, and “share1” is the share I mapped through GPO

So far so (very) good !!! :slight_smile:

From now on I will continue testing this scenario and other ones I find useful in MS world …

That all from me so far
Thank you for attention and cooperation
'till next post
Best regards
Tonci

1 Like

… sorry i mixed up pictures…
at this point:
… and create it previously in this locatin (as domain admin):
comes this picture:
image

… I must correct myself :slight_smile:
So , yes, linux users are generated also (now I remember I read it in one other post) , and their home folders that are all visible as shares from this server , and every home share shows all home folders from other users but only own folder can be entered… Is this expected behaviour ?

Now I got answer where the users we generated from rsat are and I assume we need them (as linux ones) for other services like mail, etc…

Best regards
Tonci