Hi,
Yes, your answers concur with what I thought. Only, it only works for users local to the machine, i.e. they exist in /etc/passwd and so forth. For users being authenticated - and hence auto created - by means of winbind and AD, it doesn't work. It's got to be somewhere else, perhaps on the AD machine (sigh..).
You probably should have say that it was not for local users ;-) I don't use AD to authenticate my users and I never have had to configure winbind but I immagine that winbind's configuration uses pam, which is what I use with my ldap back-end. Probably all you have to do is to modify /etc/pam.d/common-session so that when ldap/AD users login the home directory is created with the right umask (see below). Regards, Gaël lams@aruana:~> less /etc/pam.d/common-session # # /etc/pam.d/common-session - session-related modules common to all services session required pam_limits.so session required pam_unix2.so session required pam_mkhomedir.so skel=/etc/skel/ umask=077