LINUX ON SBS

Firstly I should say that the machine had Redhat 7.3 installed...fairly basic workstation installation. To add the client to an NT domain you're going to want to make sure that Samba is installed. I'm not going to get into logon scripting or anything like that...just the basics of what I did to get it working.

DHCP configuration

If there is a nice way to do this, let me know. The problem is that configuring ISA requires that the linux machine have a fixed IP, or be within a fixed IP range. Since I've only got one machine at this time I figured it would be easiest to just use a reservation. You could of course just assign the linux box a fixed IP, but then you'd have to exlude that IP from DHCP and you wouldn't get the other benefits of DHCP besides IP assignment.

1) Go to Start->Programs->Administrative Tools->DHCP to open the DHCP MMC.
2) In the MMC, expand your server, then expand your SBS Scope.
3) Under SBS Scope right click Reservations and select New.
4) The add reservation dialog will appear. Give the reservation a name (whatever you want), then enter the IP address you want to reserve and fill in the MAC address of the ethernet card in the Linux machine. If you don't know the MAC address, open a shell on the linux box and enter 'ifconfig' (or /sbin/ifconfig ); you'll see the MAC address as HWaddr. Enter this string WITHOUT the colons (e.g. 00:40:33:D3:C1:C2 should be entered as 004033D3C1C2).
5) Ok, now give the reservation a description if you wish, make sure that "Both" is selected for Supported types, and click Add. Restart the linux machine.
6) Yay, now start (or restart) the linux box, and when it comes back up, enter the ifconfig command again and you should see the IP you assigned under "inet addr". It should have also assigned your SBS server for DNS. Verify this by entering 'cat /etc/resolv.conf' in a shell. You should see a line in this file that looks like "nameserver x.x.x.x", where x.x.x.x is the IP of your SBS server.

Linux Machine configuration

You don't have to do much here. This might be somewhat Redhat specific, at least step 2 might be...

1) Open up /etc/hosts and change the line that starts with '127.0.0.1 localhost.loca...' to:

127.0.0.1 machinename.mysbsdomain.local localhost.localdomain localhost

...where machinename is the name you want to give to your linux box, and mysbsdomain.local is your SBS domain. If you've assigned your machine a static IP (asside from the localhost IP of course), then get rid of it, we're going to use DHCP.

2) Open up /etc/sysconfig/network and make sure it reads similar to this:

NETWORKING=yes
HOSTNAME=machinename.mysbsdomain.local
GATEWAY=x.x.x.x

...where machinename is the name of your linux box, mysbsdomain.local is the name of your sbs domain, and x.x.x.x is your SBS box's internal IP (actually I don't think declaring this gateway is necessary).

3) Restart networking (ifdown ifup), or just restart the machine.

ISA Server configuration

This is a bit tricky. Since you're not technically going to be "logging on" to your SBS server, you can't authenticate to ISA as you would on an NT box.  As long as you're controlling access to the linux box (there's no way to NOT controll access), you should be fine with the following:

1) On the SBS Server, open ISA Management.
2) From the ISA Management MMC, expand Servers and Arrays, then Expand your server name, then expand Access Policy.
3) Under Protocol Rules, click New, then Rule.
4) The new rule wizard will appear. Give it a name like "Linux Client Rule" and click next.
4.1) The Rule Action will be 'allow'.
4.2) Apply this rule to "All IP Traffic" (or specific protocols if you want to do it that way).
4.3) Schedule it for "Always" (assuming that's what you want). When it asks for Client Type, click "Specific computers (client address sets)".

4.4) Under Client Sets, click the "Add Button"
4.5) In the Add Client Sets dialog, click New.
4.5.1) Name your new client set, like "Linux clients".
4.5.2) Under "Members", click Add, and then add the IP range you're assigning your linux clients to (in my case just one client). BTW, I hope I mentioned it, but you should be putting your clients in one of your local address ranges!!!!! Probably obvious though.
4.5.3) Click ok.
4.6) Finish out the wizard.

Ok, now from your linux machine you should be able to fire up Mozilla or Netscape and connect to the net. You can use your http proxy as well (e.g. your server ip, port 8080).

Samba Mounting (accessing your server shares)

You don't really have to do much configuration assuming you have a standard Samba install. Here's you you work the mojo:

1) You have to give root suid permissions to the smbmnt executable so that users can mount their shares. Make sure you know the potential security risks of giving suid to any program!
2) Log on as root.
3) You should find smbmnt under /usr/bin . If it's not there, find it (e.g. find / |grep smbmnt). Then do 'chmod u+s /usr/bin/smbmnt'.
4) Log off root and log on with your regular user account.
5) In your home folder (e.g /home/username), create a folder called 'mnt' (or whatever you want), then create subfolders representing each share you want to connect to (e.g. you might have username and company folders).
6) Use the following command to mount each share:

smbmount //mysbsserver/sharename /home/username/mnt/foldername -o username=mysbsusername

You will be prompted for your SBS password.
7) If the mount was successful, you can access the shared files via the mount point. Very nifty eh!!?
8) Unmounting can be done using the smbumount command.

Working With Your Files

Assuming your an MS Office user, what good is accessing your files if there's no MS Office for linux? Well, there is, sorta.

1) On your linux box, connect your web browser to http://www.openoffice.org and download the linux distribution of OpenOffice to your home folder.
2) Do a tar -zxf on the download, and an openoffice folder will be created.  In this folder you should see an install program somewhere...run it (e.g. ./install). The openoffice installer will run.
3) Note that installing as a user will only install for that user. That's all I needed to do...I can't provide instructions for installing for all users on your linux client.
4) Use scalc to open and save excel files, use swriter to open and work with word files, use simpress to open and work with powerpoint presentations....etc. I have a feeling you'll be pretty amazed at how good the office import and export converters are....it's almost scary!

Other Tasks

- Printing to NT printers can be achieved via the NT TCP/IP print service. Samba also has print support via smbprint. Network printers are of course your best friend in this case.

- To view workstations in your domain, use the command: smbclient -L sbsservername -N

- To view all shares on an NT machine, use the command: smbclient -L ntmachinename -o username=username

Wrapup

There, you just added a workstation to your network for a grand total of $0 in software. :)

Courtesy of Boden Larsen

Home