LinuxQuestions.org - windows 2k domain controller and samba server

- Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)

- - windows 2k domain controller and samba server (https://www.linuxquestions.org/questions/linux-networking-3/windows-2k-domain-controller-and-samba-server-450468/)

windows 2k domain controller and samba server

hi all,
i have a windows 2k domain controller and i want to move file server on linux (centos 4.3). the problem is i dont know how to integrate linux samba server and win 2k pdc.

thanks

best regards.

http://www.yourhowto.org/content/view/31/9/

1. stop both winbind and samba services

'/etc/init.d/smb stop'
'/etc/init.d/winbind stop'

2. edit Kerberos files to have the right configuration

/etc/krb5.conf

[libdefaults]
default_realm = WINDOWS.SERVER.INT

[realms]
WINDOWS.SERVER.INT = {
kdc = mc1.windows.server.int
default_domain = WINDOWS.SERVER.INT
kpasswd_server = mc1.windows.server.int
admin_server = mc1.windows.server.int
}

[domain_realm]
.windows.server.int = WINDOWS.SERVER.INT

3. edit Samba files to have the right configuration

/etc/samba/smb.conf

workgroup = server
security = ads
realm = WINDOWS.SERVER.INT
encrypt passwords = yes

username map = /etc/samba/smbusers

winbind uid = 10000-20000
winbind gid = 10000-20000
winbind use default domain = yes
winbind enum users = yes
winbind enum groups = yes

4. now it's time to join the domain

'net ads join -U administrator -S mc1'

5. now it's time to start both winbind and samba services

'/etc/init.d/smb start'
'/etc/init.d/winbind start'

6. now hopefully all that went well, to test it out lets try this comand

'/usr/bin/wbinfo -g'

this should display all the groups in your active directory structure.

7. now just make a share in samba

nano /etc/samba/smb.conf

[share]
path=/home/share

I suggest you install swat and use it to create shares, it's a good web interface into samba

http://www.yourhowto.org/content/view/32/9/

Here's a couple of links that may help you integrate your Samba server into your Win2k Domain.

Kerberos can add a layer of complexity that you may not want to deal with. This link will show you how you can make your Samba server a domain member server without Kerberos:

http://www.justlinux.com/forum/showthread.php?t=118920

If you want to integrate Samba into your AD domain and use Kerberos, look at this link:

http://www.justlinux.com/forum/showthread.php?t=118288

To use winbind so you don't have to create user accounts on your Samba server, see this link:

http://www.justlinux.com/forum/showthread.php?t=118512

thaks a lot to both of you.

best regards.