Mounting Windows Shares in Ubuntu

In a mixed Windows/Ubuntu environment, it is often the case the you need to mount a Windows a share from within Ubuntu.  This can be done on an ad-hoc basis, or at every log on.

Whilst it is possible to use one line to mount a share: (//servername/sharename  /media/windowsshare  cifs  username=msusername,password=mspassword,iocharset=utf8,sec=ntlm  0  0), this is not recommended, since the username and password are available for all to view.  This may not be a problem for you, but this post will take the extra steps of masking those details.

1. Install the CIFS Utilities
       sudo apt-get install cifs-utils
   
2. Create a directory where the share will be mounted.  I personally like to create this mount in my home directory, but you can create it pretty much where ever you like:
       sudo mkdir /home/<UbuntuUserName>/Server
   
3. Create a smbcredentials file:
       sudo gedit ~/.smbcredentials
   
4. Add lines for the username and password (for the destination where the share is located):
       username=<Username>
       password=<Password>
   
5. Edit the smbcredentials file to prevent changes:
       chmod 600 ~/.smbcredentials
   
6. Edit the /etc/fstab file with root privileges and add the following line:
       //<Servername>/<Sharename> /home/<UbuntuUserName>\Server cifs credentials=/home/<UbuntuUserName>/.smbcredentials,iocharset=utf8,sec=ntlm 0 0
   Don't forget to save the file!
   
7. This can then be tested by typing the following command:
       sudo mount -a
   If this correctly mounts the share, it should work the next time you log on.
   
8. Note: In the latest versions of most file managers, these mounted shares are only available read only by default.  If like me, you are used to a Windows environment, this can be a little annoying.
   However, it is much more secure.  To write to the mounted share, simply open the file manager as root (e.g. sudo pcmanfm)

Note: the following "variables" are used in the above steps:

<Username>
    Username for accessing the remote share

<Password>
    Password for accessing remote share
<UbuntuUserName>
    Local Ubuntu username

<Servername>
    Server name or IP address of the server housing the remote share

<Sharename>
    Share name on the remote server

Installing Wireless in Ubuntu

When installing Ubuntu (and it's many variants) on older hardware, it is often the case that the wireless drivers do not work without some tinkering.  There are too many different cards out there to write a set of instructions on how to install every card, therefore I will focus on the steps required to install network cards on my old Dell laptops, all running a Broadcom network cards.

The steps below show the steps required to install Broadcom drivers on Ubuntu:

1. Identify the installed hardware, by typing:
       lspci -vnn | grep Network
2. On my Dell D620, this returned the following:
       Broadcom Corporation BCM4311 802.11b/g WLAN [14e4:4311] (rev 01)
   It is the BCM4311 part we are interested in.
3. Remove the currently installed Broadcom drivers:
       sudo apt-get remove --purge bcmwl-kernel-source
4. Update the software list:
       sudo apt-get update
5. Install the correct firmware.  Since, the output in step #2 reported "BCM4311", I require the "b43" version of the firmware:
       sudo apt-get install firmware-b43-installer
6. Reboot

Upon starting the machine, a list of available wireless networks should be available.

Adding Services to Group Policies

By default, when you load up the services list in Group Policy editor, only the services running on that particular server are shown.  If you want to control services running on other machines, you need to add them.  Any service at all can be added, including ones from third party vendors.

Step 1: Export Settings

1. Log on to the machine that runs the service you require
2. Run secpol.msc
3. Create a new template
4. Within that template, navigate to "System Services" and all the services currently on that machine will be listed.
5. Edit the service(s) that you require (note: ONLY edit there services)
6. Save the template
7. Copy that file to the machine where you run the GP Editor (usually a DC)

Step 2: Import Settings

1. Load Group Policy Editor, and edit the policy that controls services you require
2. Navigate to the ‘Security’ node, right-click, choose import and select the file exported above
3. The service(s) should now appear in the policy, and can be modified just like any other service