|
TDB Database File Information
This section contains brief descriptions of the databases that are used by Samba-3.
The directory in which Samba stores the tdb files is determined by compile-time directives. Samba-3 stores
tdb files in two locations. The best way to determine these locations is to execute the following
command:
root# smbd -b | grep PRIVATE_DIR
PRIVATE_DIR: /etc/samba/private
This means that the confidential tdb files are stored in the /etc/samba/private
directory. Samba-3 also uses a number of tdb files that contain more mundane data. The location of
these files can be found by executing:
root# smbd -b | grep LOCKDIR
LOCKDIR: /var/lib/samba
Therefore the remaining control files will, in the example shown, be stored in the
/var/lib/samba directory.
The persistent tdb files are described in
the Persistent TDB File
Descriptions table. All persistent tdb files should be regularly backed up. Use the
tdbbackup
utility to backup the tdb files. All persistent tdb files must be
preserved during machine migrations, updates and upgrades.
The temporary tdb files do not need to be backed up, nor do they need to be preseved across machine
migrations, updates or upgrades. The temporary tdb files are described in
the Temporary TDB File Descriptions.
Table1.1.Persistent TDB File Descriptions
| Name |
Description |
| account_policy |
Samba/NT account policy settings, includes password expiration settings.
|
| group_mapping |
Mapping table from Windows groups/SID to UNIX groups.
|
| ntdrivers |
Stores per-printer installed driver information.
|
| ntforms |
Stores per-printer installed forms information.
|
| ntprinters |
Stores the per-printer devmode configuration settings.
|
| passdb |
Exists only when the tdbsam passwd backend is used. This file stores the
SambaSAMAccount information. Note: This file requires that user POSIX account information is
availble from either the /etc/passwd file, or from an alternative system source.
|
| registry |
Read-only Samba database of a Windows registry skeleton that provides support for exporting
various database tables via the winreg RPCs.
|
| secrets |
This file stores the Workgroup/Domain/Machine SID, the LDAP directory update password, and
a further collection of critical environmental data that is necessary for Samba to operate
correctly. This file contains very sensitive information that must be protected. It is stored
in the PRIVARE_DIR directory.
|
| share_info |
Stores per-share ACL information.
|
| winbindd_idmap |
Winbindd's local IDMAP database.
|
Table1.2.Temporary TDB File Descriptions
| Name |
Description |
Backup |
| brlock |
Byte-range locking information.
|
No |
| connections |
A temporary cache for current connection information used to enforce max connections.
|
no |
| eventlog/*tdb |
Records of eventlog entries. In most circumstances this is just a cache of system logs.
|
no |
| gencache |
Generic caching database for dead WINS servers and trusted domain data.
|
no |
| login_cache |
A temporary cache for login information, in particular bad password attempts.
|
no |
| messages |
Temporary storage of messages being processed by smbd.
|
no |
| netsamlogon_cache |
Caches user net_info_3 structure data from net_samlogon requests (as a domain member).
|
no |
| perfmon/*.tdb |
Performance counter information.
|
no |
| printing/*.tdb |
Cached output from lpq command created on a per-print-service basis.
|
no |
| schannel_store |
A confidential file, stored in the PRIVATE_DIR, containing crytographic connection
information so that clients that have temporarily disconnected can reconnect without
needing to renegotiate the connection setup process.
|
no |
| sessionid |
Temporary cache for miscellaneous session information and for utmp handling.
|
no |
| unexpected |
Stores packets received for which no process is actively listening.
|
no |
| winbindd_cache |
Cache of Identity information received from an NT4 domain or from ADS. Includes user
lists, etc.
|
yes |
|
