Difference between revisions of "Howto Add a Samba4 Domain Controller"
Jump to navigation
Jump to search
Line 16: | Line 16: | ||
samba-tool domain join AD.PUMPINGSTATIONONE.ORG DC -U hef | samba-tool domain join AD.PUMPINGSTATIONONE.ORG DC -U hef | ||
+ | |||
+ | === Checking and Fixing DNS === | ||
+ | |||
+ | DNS doesn't always register correctly. | ||
+ | |||
+ | check it: | ||
+ | |||
+ | host -t dc01.ad.pumpingstationone.org. | ||
+ | |||
+ | If nothing comes back, re add it by hand. | ||
+ | |||
+ | samba-tool dns add bob ad.pumpingstationone.org dc01 A 10.100.0.112 | ||
+ | |||
== Joining As a Domain Member == | == Joining As a Domain Member == | ||
Line 22: | Line 35: | ||
The samba-tool domain join command does not get winbindd working correctly. The <code>net</code> command is required. | The samba-tool domain join command does not get winbindd working correctly. The <code>net</code> command is required. | ||
+ | |||
== Adding Users == | == Adding Users == |
Revision as of 19:54, 1 September 2014
Setup
- Follow the Arch provision guide
- Add role: dc to the salt minion config.
Create a file called /etc/salt/minion.d/dc.conf
grains: roles: - dc
Joining As a Domain Controller
samba-tool domain join AD.PUMPINGSTATIONONE.ORG DC -U hef
Checking and Fixing DNS
DNS doesn't always register correctly.
check it:
host -t dc01.ad.pumpingstationone.org.
If nothing comes back, re add it by hand.
samba-tool dns add bob ad.pumpingstationone.org dc01 A 10.100.0.112
Joining As a Domain Member
net ads join -U hef
The samba-tool domain join command does not get winbindd working correctly. The net
command is required.
Adding Users
Regular users need to get there account through https://members.pumpingstationone.org.
service and test accounts can be created with the following procedire
To create the user "hef" and set the user password, use the following command:
samba-tool user add hef
To add the user "hef" to the "Domain Admins" group, use the following command:
samba-tool group addmembers "Domain Admins" hef