Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I must be missing something, but I don't seem to be able to find how to join the linux server on which samba4 domain controller is running to the domain. Can anyone give me a few pointers?
My current smb.conf looks like as follows:
Code:
[global]
workgroup = HOME
realm = HOME.LAN
netbios name = DC
server role = active directory domain controller
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbind, ntp_signd, kcc, dnsupdate
idmap_ldb:use rfc2307 = yes
allow dns updates = nonsecure and secure
dns forwarder = 127.0.0.1
printing = CUPS
printcap name = /dev/null
host msdfs = yes
vfs object = dfs_samba4
[dfs]
comment = DFS Root Share
path = /export/dfsroot
msdfs root = yes
browseable = yes
read only = no
[public]
path = /export/samba/public
public = yes
writable = yes
browseable = yes
create mode = 0660
directory mode = 0770
[profiles]
path = /export/samba/profiles
read only = no
[netlogon]
path = /var/lib/samba/sysvol/home.lan/scripts
read only = No
[sysvol]
path = /var/lib/samba/sysvol
read only = No
To get this far, I have been using the tutorial that could be found at http://www.thejonas.net/?page_id=618. But it is only for other servers and clients, not for the domain controller itself.
you are saing that you have installed samba 4 domain on linux machine and it it not in domain? when you check from windows machine in ad users and coputers under domain cotrollers OU you cannot see your DC?
I can see the DC in 'ad users and computers', but I am not able to login to the server with AD credentials, which is important to be able to set permissions on a share.
sorry so stupid question but to log on locally if it is not admin account microsoft has policy account must be granted permissions to log on locally. I connect from pc to manage shares with computer management console. and how are you going to logon to server?
So you cannot log on the linux server that is running the domain with a domain administrator account, because it is the domain controller? That makes no sense to me at all. That's not the a DC works in Windows either. Furthermore you have to create the share on the server, when it is created you can set file system permissions and share permissions. The first one is what I would like to do and the second one is arranged within the samba configuration. So yes, setting the share permissions is not the problem. The file system permissions is needed because some users can also connect in different ways to 'share' without using Samba.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
samba4: joining domain controller to itself
