I have set up a domains and it works well except the logon script will run on all win98 machines but not 2K/XP?

Running the samba that came with RH 7.3
Yes the users have been set up as local users & smb users and the users/machines log onto the domain without any problems!

The logon script is in /etc/samba/netlogon/groupname.bat
(replace groupname with the users real primary group name)
The group has read and execute access permissions on the file groupname.bat and its directory

Here is my smb.conf with the names and ip addresses changed

#======================= Global Settings =====================================
[global]

netbios name = NAME
server string = SERVER
workgroup = WORKGROUP
hosts allow = 10.XX.XX. 127.0.0.

; guest account = pcguest

#this is a simple script to create a machine trust account on the PDC
add user script = /usr/sbin/useradd -d /dev/null -g machines -c machines -s /bin/false -M %u

log file = /var/log/samba/machine_logs/log.%m
log file = /var/log/samba/user_logs/log.%U
max log size = 50

security = user

encrypt passwords = yes
smb passwd file = /etc/samba/smbpasswd

pam password change = no
obey pam restrictions = yes

socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

interfaces = 10.XX.XX.XX/24
remote announce = 10.XX.XX.255

local master = yes
browseable = yes
os level = 99
domain master = yes
preferred master = yes

domain admin group = @root @admin
# Below is not working (may be out of date ??? will look at later!)
# domain admin users = root steve

domain logons = yes

logon home = \\%L\%U
logon drive = H:

logon script = %g.bat

logon path = %g

wins support = yes
wins proxy = no
dns proxy = no




#============================ Share Definitions ==============================


[homes]
comment = Home Directories
hide unreadable = yes
browseable = no
writable = yes
valid users = %S
create mode = 0664
directory mode = 0750
# If you want users samba doesn't recognize to be mapped to a guest user
; map to guest = bad user

[profiles]
comment = Profiles
path = /etc/samba/profiles/
hide unreadable = Yes
browseable = no
readonly = yes
writelist = @admin, @root
;createmask = 0770

[netlogon]
comment = Network Logon Service
path = /etc/samba/netlogon
writable = no
share modes = no
writelist = @admin, @root

#end of smb.conf

I have searched and not found anything useful.
Hope I can sort this out!

Anyone ???

I would love to help, but sadly your problem seems above my head. However, I can offer this, if you're running the version of Samba that came with RH7.3 then you should probably install the security patches because I'm fairly certain that there were at least a couple exploits found since 7.3 came out. In fact there's a pretty serious one that was anounced on the Samba.org site here (http://ca.samba.org/samba/samba.html). In regards to the logon script I can't think of anything that I've heard of to help you out. I have my own machines setup to use a logon script on Samba and they're running Win2K server. Your Samba config file looks nice and tight so you'll probably have to work on that for awhile. Anyway, try upgrading your version of Samba, you can try using up2date -u, you'll have to register with RedHat but you're guaranteed to always get all your security patches. I believe the most recent version is 2.2.8.

Joe

The security I had covered by only allowing 10. numbers so thats ok.
I will update samba but I really don't think thats the issue here.

I may try adding rootexec in front of a few lines to see if that helps (although I don't see I should need to)

Maybe its because I use groups (%g) and somehow thats not working!

The upgrade recommendation was just for security, I doubt it'll fix any of your problems.

Joe

After trying rootexec etc and still not working it turned out to be %G and not %g that did the trick!