Topic: Noobish question

[treydock]

I've been searching around the directories and data bases of SME and I was wondering.  How on earth does one learn how to change what settings and where to change them and so on?

I've searched the site so many times for so much, i've read the dev guide, it just seems like there is a lack of easily obtainable info for the complexity of SME ... I could be wrong and just not looking in the right place.

Just wondering if it's a teach yourself sort of thing or whatnot

[CharlieBrady]

I've been searching around the directories and data bases of SME and I was wondering.  How on earth does one learn how to change what settings and where to change them and so on?

Have you read the User Manual?

[treydock]

Have you read the User Manual?

At least 3 or 4 times, literally

[pfloor]

When asking questions, be much more specific...Exactly what settings are you trying to change?  Different settings are changed in different manners.

[treydock]

Things like Apache , and from what I've see on dev sections of the site there are very many packages in SME.  I could work with them on a normal distro but from what I read everthing is used in databases, and that in itself is mentioned very little.

Also one big thing I wanted to find was ways to set user permissions and user group permissions and things of that nature.  Was able to do that with my old win2k Server, I know it's possible just don't know where to start and finding needles in hay stacks make me itch.

Also was wanting to know where i-bays , file server and what not were store.  I know this sounds dumb but I was going to have SME backup onto my webserver and my webserver backup onto my SME server, ghetto RAID.

I was just hoping there might be something out there I missed that could offer more guidance.  I feel bad having to post a question almost every day or 2 when I run into a problem.

One day I'll get all this down

OH AND ALSO  I have not been able to get my rommate's Win98 and my Win2k server to join my SME server/gateway pls help

[cactus]

Things like Apache , and from what I've see on dev sections of the site there are very many packages in SME.  I could work with them on a normal distro but from what I read everthing is used in databases, and that in itself is mentioned very little.

For a schematic overview: http://no.longer.valid/phpwiki/index.php/Architecture%20overview

Also one big thing I wanted to find was ways to set user permissions and user group permissions and things of that nature.  Was able to do that with my old win2k Server, I know it's possible just don't know where to start and finding needles in hay stacks make me itch.

There is a server-manager panel (located at https://server-name/server-manager) in which you can create groups and assing users to certain groups. This groups at their turn can be associated with ibay access and so on.

Also was wanting to know where i-bays , file server and what not were store.

/home/e-smith/files/ibays for instance.

I was just hoping there might be something out there I missed that could offer more guidance.  I feel bad having to post a question almost every day or 2 when I run into a problem.

Don't be embarressed to ask questions, yuo can not know the system by heart at once. The Development guide is a good way of getting to know the system, especially for the internal configuration database and the templating system which is used to create all the configuration files for the SME Server services.

One day I'll get all this down

Yep!

OH AND ALSO  I have not been able to get my rommate's Win98 and my Win2k server to join my SME server/gateway pls help

Apply the registry fix as suggested in the FAQ

One suggestion: Use one message per question/subject. This makes replying and staying on topic much easier.

[treydock]

Awsome , thanks for the reply cactus, very helpful.

There is a server-manager panel (located at https://server-name/server-manager) in which you can create groups and assing users to certain groups. This groups at their turn can be associated with ibay access and so on

One question about that.  When I worked with Win2kServer you would create a user.  Then you could add the user to multiple groups which had their own limits and permissions.  Like say I want to create 3 users who all have admin powers, and 4 powerusers and the rest all just users, where are the settings to do such things?  As far as I can tell from working with groups it's just grouping users together for email and i-bay purposes.

[cactus]

Awsome , thanks for the reply cactus, very helpful.

There is a server-manager panel (located at https://server-name/server-manager) in which you can create groups and assing users to certain groups. This groups at their turn can be associated with ibay access and so on

One question about that.  When I worked with Win2kServer you would create a user.  Then you could add the user to multiple groups which had their own limits and permissions.  Like say I want to create 3 users who all have admin powers, and 4 powerusers and the rest all just users, where are the settings to do such things?  As far as I can tell from working with groups it's just grouping users together for email and i-bay purposes.

I just found out yesterday after experimenting a lot that you can use the group description to match them to the Windows groups. I have not fully tested everything but I created a group called "domain.admins" with the description "Domain Admins" and they were perfectly mapped to the Domain Admins group under Windows (the group name is arbitrarily, the description should be exactly as used in Windows). I guess this will also work for Power Users and other groups. Here is a list of the Windows Groups:

• System Operators (SID-removed) -> -1
• Replicators (SID-removed) -> -1
• Guests (SID-removed) -> -1
• Power Users (SID-removed) -> -1
• Domain Users (SID-removed) -> shared
• Print Operators (SID-removed) -> -1
• Administrators (SID-removed) -> -1
• Account Operators (SID-removed) -> -1
• Backup Operators (SID-removed) -> -1
• Users (SID-removed) -> -1
• Domain Admins (SID-removed) -> domain.admins
• Domain Guests (SID-removed) -> nobody

(I removed the SID's for security issues)

Behind the -> is the name of the mapped group as you (might have) created it in the server-manager. A value of -1 means no group or user mapped.

I don't know if it is possible for all this groups but the Domain Admins group seems to work OK

Be carefull though, as by default the Domain Admins group is mapped to the admin member by default, also don;t mess with the Domain Users as this group is managed by the server and all members created will be mapped but in this group and therefor automatically will be domain member.

Please post your expereinces back to the forum, so we can all benefit (in case you try off course).

If you want to see if you maping worked correctly you can try this:

Log in as root user by SSH or at the console. With the following commands you will be able to retrieve data:

Code: [Select]

net groupmap list will give you all the groups and there mapped user group

Code: [Select]

net rpc group MEMBERS "windows groupname/description" --user=admin will list the members who are mapped to the group after you have entered the admin password, e.g.

Code: [Select]

net rpc group MEMBERS "Domain Admins" --user=admin

[treydock]

]# net groupmap list
System Operators (S-1-5-32-549) -> -1
Replicators (S-1-5-32-552) -> -1
Guests (S-1-5-32-546) -> -1
Domain Admins (S-1-5-21-4103678720-341579650-854190313-512) -> domain.admins
Power Users (S-1-5-32-547) -> -1
Print Operators (S-1-5-32-550) -> -1
Administrators (S-1-5-32-544) -> -1
Domain Users (S-1-5-21-4103678720-341579650-854190313-513) -> shared
Account Operators (S-1-5-32-548) -> -1
Condo Users (S-1-5-21-4103678720-341579650-854190313-11005) -> condo_users
Domain Guests (S-1-5-21-4103678720-341579650-854190313-514) -> nobody
Backup Operators (S-1-5-32-551) -> -1
Users (S-1-5-32-545) -> -1
Administrators (S-1-5-21-4103678720-341579650-854190313-11009) -> admins


That part worked and

[root@dualserver ~]# net rpc group MEMBERS "Administrators" --user=admin

also worked.  Can't test on Windows machine cause none of my windows machines can join my domain.....worst hate for computers I've had in a long time :-/