Wednesday, September 8, 2010

LinuxCBT Samba


LinuxCBT Samba
Samba is the de-facto UNIX/Linux-based software for seamlessly integrating UNIX/Linux environments with MS Windows networks via Samba’s implementation of the SMB protocol suite. Samba allows your UNIX/Linux system to emulate a Windows workstation/server in the network neighborhood/my network places browse list. Consequently, your UNIX/Linux-based system appears to be a Windows-based system featuring file & print shares. Additionally, Samba adds many features not included with stock MS Windows systems.

Let LinuxCBT Samba Edition help to solidify your understanding of Samba and ancillary components.
Recommended Prerequisites:
* Familiarity with MS Windows networking (File & Print shares)
* Access to a GNU/Linux-based PC to install Samba and ancillary components used
* Access to a MS Windows-based system connected to the same network
LinuxCBT Samba Edition – Disc 1
* Introduction to Samba & Clients
o Explore Samba server configuration
o Identify key Samba packages & contents
o Explore the SMB workgroup implementation
o Discuss the roles of Local Master Browsers (LMBs) & Domain Master Browsers (DMBs)
o Use findsmb & smbclient to reveal the active browse lists
o Discuss NETBIOS naming rules
o Identify system broadcast address & discuss broadcast-based NETBIOS name resolution
o Identify & discuss the roles of the key Samba daemons
o Use smbtree to enumerate the active workgroups, hosts & file & print shares
o Install rdesktop client for remote desktop connectivity to Windows 2003 Server
o Explore browse list & SMB clients from Windows 2003
o Share file resource on Windows 2003 Server for use by Samba clients
o Join common workgroup from Windows 2003 host
o Use smbclient to enumerate & connect to shared resources on XP/2003 hosts
o Explore anonymous and authenticated share enumeration using smbclient
o Transfer files between Samba and Windows 2003 hosts using smbclient
o Use smbget to download files non-interactively from remote SMB server
o Use smbclient with credentials stored in a hidden file
o Create tarball archive using tar & discuss Samba’s smbtar utility
o Create tar-compatible archives of remote SMB-share using smbtar
*
* Samba File System (SMBFS) Integration
o Discuss the features & benefits of SMBFS
o Identify package & files
o Create temporary mount point for remote SMB share
o Mount remote SMB share into local Linux file system using SMBFS
o Examine resultant Linux file-system permissions post SMBFS mount
o Transfer files to mount point (Remote Windows 2003 system) & examine results
o Identify SMBFS process footprint
o Mount remote SMB share with previously-defined hidden credentials file
o Modify system startup file to facillitate automatic SMBFS mounts upon system restart
*
* Workgroup & Windows Internet Naming System (WINS) Integration
o Identify key Samba configuration file & package membership
o Use findsmb to reveal available workgroups
o Alter Samba configuration file to join available workgroup
o Identify key TCP/UDP ports used by key Samba daemons
o Use findsmb & browse list to confirm workgroup membership
o Enumerate default Samba shares on primary Linux system using smbclient
o Introduction to smbpasswd utility and database
o Use smbpasswd to add Windows user to database & confirm authentication from Windows host
o Install WINS Server on Windows 2003 Server for use by SMB-clients
o Explain default Samba NETBIOS name resolution order
o Identify name resolution order directive in primary Samba configuration file
o Configure Samba server to be a WINS client via Samba configuration file
o Confirm WINS NETBIOS registrations of Samba & Windows hosts
*
* Samba Share-Level File & Print Security Implementation
o Discuss Samba’s security modes
o Discuss the features & benefits of share-level security
o Alter primary Samba configuration file to support share-level security
o Define and publish a public read-only share
o Reload key Samba daemons & confirm connectivity to read-only share
o Enumerate & connect to public read-only share from a remote Samba client
o Define & publish an anonymous read-write share
o Use chmod & chown to define appropriate permissions and ownership on the directory
o Confirm the ability to write to read-write share from remote Windows 2003 system
o Examine applied permissions & ownership of created objects on the Linux file system
o Define & publish a private read-write share
o Confirm authentication to private read-write share from remote Windows 2003 host
o Update Samba back-end database to reflect new user – test connectivity
o Compare & contrast Windows & Samba hidden share definition
o Define hidden share & explore browse list from Samba & Windows hosts
o Convert existing shares to hidden shares and examine updated browse list
o Discuss default Samba print sharing implementation
o Explore Common UNIX Printing System (CUPS) interface
o Install and configure a printer
o Discuss various CUPS back-end capabilities
o Discuss the CUPS-generated printcap file
o Explore key Samba print-related configuration directives
o Share the printer using Samba
o Connect to printer from Windows host and test printing
*
* Samba Web Administration Tool (SWAT)
o Discuss the features & benefits of Samba SWAT
o Explore XINETD system configuration for the presence of Samba SWAT
o Install Samba SWAT from the local package repository
o Update XINETD configuration to enable Samba SWAT & confirm TCP listener
o Authenticate to Samba SWAT as non-privileged and privileged users
o Examine current smbd & nmbd connections
o Explore & discuss the key tools included with Samba
o Correlate Samba’s primary configuration file to Samba SWAT’s web interface
o Discuss the key directives in the global section of the Samba SWAT web interface
o Discuss additional directives in the advanced view of the Samba SWAT global area
o Adjust the OS Level and examine the changes to the role in the browse list
o Discuss Samba WINS server rules & limitations
o Explore shares configuration
o Correlate shares section of main config file to Samba SWAT’s shares interface
o Discuss the effects of various share directives
o Discuss the variable homes share and its applications
o Explain Samba’s create mask directive & examine its application
o Examine the advanced Samba SWAT shares view & discuss key directives
o Define valid & invalid users per share & test connectivity from remote Windows host
o Force ownership of file & directory objects using the force user directive
o Explore & discuss advanced printer share directives
o Define multiple NETBIOS names and view results in the browse list
*
* Samba User-Level Security Mode
o Explain the advantages and features of user-level security
o Discuss the user-accounts back-ends supported by Samba
o Convert Samba from share-level to user-level security mode
o Test user-level connectivity to Samba shares/services
o Discuss IPC$ connections and applications
o Explore passwd & shadow user-accounts databases
o Explore the smbpasswd database
*
* Samba – Active Directory (AD) – BIND Integration
o Discuss the DNS requirements of Active Directory
o Install BIND from RPM repository
o Configure BIND as a caching-only name server
o Define usable BIND named.conf configuration file with appropriate zones
o
o Define required Active Directory dynamically updateable zones
o Install Active Directory on Windows server
o Confirm BIND DNS connectivity
o Configure Kerberos to support Active Directory Realm & test connectivity
o Convert Samba from basic user-level to ADS security mode
o Use the net command to create Samba machine account in the Active Directory
o Confirm authentication against Active Directory when accessing resources
o Create AD -> Linux corresponding users for transparent access
*
* Samba – Winbindd
o Discuss the features & advantages of Winbind
o Discuss the accounts resolutions process
o Alter the name server switch process to facilitate winbind
o Discuss UNIX/Linux uids & gids
o Explain the application of idmaps – uids & gids
o Configure Samba to use Winbind
o Enumerate remote Active Directory users using wbinfo & getent
o Examine auto-assigned uids & gids via idmap
o Connect to Samba server using Active Directory users & Winbind
o Configure SSHD to support Winbind-provided users from Active Directory
o Configure Winbind to use the default Active Directory domain for authentication
o Configure VSFTPD to use the default Active Directory domain for authentication
*
* Samba – Linux File System & Share/Service Permissions
o Explain how Samba interacts with file-system permissions
o Explain UNIX/Linux file-system permissions – UGO
o Use chown/chmod to adjust file-system permissions
o Discuss the applicable Samba share/service permissions directives
o Apply various share/service permissions & test results
*
* Samba – Miscellaneous
o Create share/service with appropriate permissions for collaborations
o Examine collaborative permission from Windows client
o Configure Samba as a WINS server & discuss capabilities
o Configure Samba a print server for SMB(Windows/Linux/UNIX) clients
o Explore Samba logging
o Mount remote CIFS shares into the Linux file system
o Share mounted CIFS directories using Samba
Download Link:
Password: cieb

No comments: