This applies to at least 3.0.24 and 3.0.21c. System policies do work in 3.0.14a-debian. The ntconfig.pol file is transfered to windows 2k/xp clients during login, but for some reason is not applied in affected samba versions. I captured the following debugging output from one of the clients: USERENV(2a8.2ac) 18:52:48:468 LoadUserProfile: Returning TRUE. hProfile = <0xb48> USERENV(2a8.2ac) 18:52:48:468 ApplySystemPolicy: Entering USERENV(2a8.2ac) 18:52:48:468 ApplySystemPolicy: PolicyPath is: <\\SOUNDWAVE\netlogon\ntconfig.pol>. USERENV(2a8.2ac) 18:52:48:484 ApplySystemPolicy: Local PolicyPath is: <C:\Documents and Settings\zev\prf98.tmp>. USERENV(2a8.2ac) 18:52:48:484 MyRegLoadKey: Returning 00000000 USERENV(2a8.2ac) 18:52:48:484 ApplySystemPolicy: Looking for user specific policy. USERENV(2a8.2ac) 18:52:48:484 OpenUserKey: No entry for zev, using .Default instead. USERENV(2a8.2ac) 18:52:48:500 ApplySystemPolicy: Processing group(s) policy. USERENV(2a8.2ac) 18:52:48:500 ApplySystemPolicy: Failed to get group processing order. USERENV(2a8.2ac) 18:52:48:500 ApplySystemPolicy: Looking for machine specific policy. USERENV(2a8.2ac) 18:52:48:500 OpenUserKey: No entry for CHROMIA, using .Default instead. USERENV(2a8.2ac) 18:52:48:500 MyRegUnLoadKey: Returning 1. USERENV(2a8.2ac) 18:52:48:500 ApplySystemPolicy: Leaving with 1 There is nothing obviously wrong from this output, but the policy is still not applied. If you need any more information, I'd be happy to help. Zev
Zev, Make sure that the ReadOnly bit is not set on the ntconfig.pol file.
(In reply to comment #1) > Zev, Make sure that the ReadOnly bit is not set on the ntconfig.pol file. > (At least under 3.0.24) I tried chmodding ntconfig.pol 777, as well as following the other suggestions in bug 3042, but to no avail. The Windows logs as well as the Samba logs suggest that the file is read and transmitted just fine, but just not applied.