ILRI Research Computing

User Tools

Site Tools

You are here: start » samba
samba

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
samba [2009/11/12 06:30] 172.26.0.166samba [2010/05/22 14:19] (current) – external edit 127.0.0.1
Line 1: Line 1:
 ===== Configuring Samba for Segolip ===== ===== Configuring Samba for Segolip =====
-Segolip's unit has many customers who use the HPC to analyse data from the labs.  Segolip has several administrative users who are in charge of copying data to/from the HPC and into the proper customers' folders.  These administrators have read/write access to the root of the Segolip data, under which they will move data to the appropriate places for their customers to access.  Customers are not allowed to write in these folders, so they must use the data where it is, or copy it somewhere else in order to use it.+Segolip's unit has many customers who use the HPC to analyze data from the labs.  Segolip has several administrative users who are in charge of copying data to/from the HPC and into the proper customers' folders.  These administrators have read/write access to the root of the Segolip data, under which they will move data to the appropriate places for their customers to access.  Customers are not allowed to write in these folders, so they must use the data where it is, or copy it somewhere else in order to use it.
  
 Customers have shell accounts and samba accounts. Customers have shell accounts and samba accounts.
Line 20: Line 20:
 <code># chown -R segoliadmin:icipe /export/home/segoli/ICIPE <code># chown -R segoliadmin:icipe /export/home/segoli/ICIPE
 # chmod o-rwx,g+s /export/home/segoli/ICIPE</code> # chmod o-rwx,g+s /export/home/segoli/ICIPE</code>
 +===== Add users =====
 +To use Samba a user must also have a Unix account.  Create the Unix account and add the user to any required groups before you attempt to create the Samba account.
  
 +Add the user:
 +<code># useradd mkyalo</code>
 +In ''/etc/passwd'', add the real name and group to the user's entry.  See before and after:
 +<file>mkyalo:x:755:755::/export/home/mkyalo:/bin/bash
 +-- after --
 +mkyalo:x:755:755:Martina Kyalo,IITA:/export/home/mkyalo:/bin/bash
 +</file>
 +Add the user to the appropriate groups. For example, the above user is a part of the ''iita'' group (and that group already exists):
 +<code># gpasswd -a mkyalo iita
 +Adding user mkyalo to group iita
 +# id mkyalo
 +uid=755(mkyalo) gid=755(mkyalo) groups=755(mkyalo),10003(iita)</code>
 +Set the user's Unix and Samba passwords:
 +<code># passwd mkyalo
 +# smbpasswd -a mkyalo</code>
 +
 +===== Sync users and groups =====
 +It is very important to synchronize the user and group information from the head node to the compute nodes.  Rocks has a command for this:
 +<code># rocks sync users</code>
 +This will automatically:
 +  * Copy ''/etc/passwd'', ''/etc/shadow'' to the compute nodes
 +  * Copy ''/etc/group'', ''/etc/gshadow'' to the compute nodes
 +  * Add NFS automount information to ''/etc/auto.home''
  
 ===== Set ACLs ===== ===== Set ACLs =====
Line 52: Line 77:
   * http://www.suse.de/~agruen/acl/linux-acls/online/   * http://www.suse.de/~agruen/acl/linux-acls/online/
  
-===== Add users ===== 
-Add users using useradd, then edit their account information to list their group affiliation (for reference, since three years down the line we'll have too many users and have no clue who they are): 
-<code># useradd mkyalo</code> 
-In ''/etc/passwd'', add the real name and group to the user's entry.  See before and after: 
-<file>mkyalo:x:755:755::/export/home/mkyalo:/bin/bash 
--- after -- 
-mkyalo:x:755:755:Martina Kyalo,IITA:/export/home/mkyalo:/bin/bash 
-</file> 
-Add the user to the appropriate groups. For example, the above user is a part of the ''iita'' group (and that group already exists): 
-<code># gpasswd -a mkyalo iita 
-Adding user mkyalo to group iita 
-# id mkyalo 
-uid=755(mkyalo) gid=755(mkyalo) groups=755(mkyalo),10003(iita)</code> 
-===== Sync users and groups ===== 
-It is very important to synchronize the user and group information from the head node to the compute nodes.  Rocks has a command for this: 
-<code># rocks sync users</code> 
-This will, among other things: 
-  * Copy ''/etc/passwd'', ''/etc/shadow'' to the compute nodes 
-  * Copy ''/etc/group'', ''/etc/gshadow'' to the compute nodes 
-  * Add NFS automount information to ''/etc/auto.home'' 
-This is a good thing. 
 ===== Add Samba shares ===== ===== Add Samba shares =====
  
Line 120: Line 124:
  
 Change the user's passwords by logging into Swat as root. Change the user's passwords by logging into Swat as root.
 +
 +===== Standard Operating Procedure =====
 +
 +In order to access Segolip storage on the HPC a user first needs an account on the HPC (user/password created by the system administrator). After that the procedure is as follows:
 +
 +==== In Windows:====
 +
 +  - Click Start -> Run and type: \\hpc.ilri.cgiar.org\groupname (where "groupname" is the group you've been given access to, such as iita, cimmyt, etc.
 +  - A message will appear asking for a username and password; enter the details you were given and press enter.
 +  - If your account information is correct you will see a folder appear with your files inside.
 +  - Your connection will remain active until the computer is shut down, restarted, or logged off.
 +
 +====On a Macintosh====
 +
 +  - Click Go -> Connect to Server and type: %%smb://hpc.ilri.cgiar.org/groupname%% (where "groupname" is the group you've been given access to, such as iita, cimmyt, etc.
 +  - A message will appear asking for a username and password; enter the details you were given and make sure Domain is ILRI, then press enter.
 +  - If your account information is correct you will see a folder appear with your files inside.
 +  - Your connection will remain active until the computer is shut down, restarted, or logged off.
samba.1258007412.txt.gz · Last modified: 2010/05/22 14:19 (external edit)