Видео. Samba 4 AD DC на Ubuntu Server 12.10 с Bind 9.9.2-P1 в качестве DNS.
Опубликовано 02 Апр 2013 в рубрике «Samba 4»
Samba 4 AD DC на Ubuntu Server 12.10 с Bind 9.9.2-P1 в качестве DNS.
Список команд из видео.
sudo su -
/etc/init.d/apparmor stop update-rc.d -f apparmore remove aptitude remove apparmor
sudo apt-get update && sudo apt-get upgrade
vi /etc/network/interfaces
/etc/init.d/networking restart
vi /etc/hosts
127.0.0.1 samba.samdom.example.com samba
cat /etc/hosts
echo samba.samdom.examle.com > /etc/hostname cat /etc/hostname reboot hostname hostname -f
apt-get install build-essential libacl1-dev libattr1-dev libblkid-dev libgnutls-dev libreadline-dev python-dev python-dnspython gdb pkg-config libpopt-dev libldap2-dev dnsutils libbsd-dev attr krb5-user docbook-xsl libcups2-dev acl
cat /boot/config-`uname -r` | grep CONFIG_EXT
vi /etc/fstab
#подсказка dd - удалить строку /dev/mapper/samba-root / ext4 errors=remount-ro,user_xattr,acl,barrier=1 1 1
cat /etc/fstab reboot
touch test.txt setfattr -n user.test -v test test.txt setfattr -n security.test -v test2 test.txt getfattr -d test.txt getfattr -n security.test test.txt touch test3.txt setfacl -m g:adm:rwx test3.txt getfacl test3.txt
apt-get install git git clone git://git.samba.org/samba.git samba-master cd samba-master ./configure --enable-debug --enable-selftest make make install
apt-get install bind9 named -V apt-get remove bind9 apt-get install libkrb5-dev libssl-dev cd /root wget ftp://ftp.isc.org/isc/bind9/9.9.2-P1/bind-9.9.2-P1.tar.gz tar -zxvf bind-9.9.2-P1.tar.gz cd bind-9.9.2-P1
./configure --prefix=/usr --mandir=/usr/share/man --infodir=/usr/share/info --sysconfdir=/etc/bind --localstatedir=/var --enable-largefile --with-libtool --enable-shared --enable-static --with-openssl=/usr --with-gssapi=/usr --with-gnu-ld --with-geoip=/usr --enable-ipv6 --with-dlopen=yes
make make install
/etc/init.d/bind9 start ps ax named -V
/usr/local/samba/bin/samba-tool domain provision --dns-backend=BIND9_DLZ --domain=SAMDOM --realm=SAMDOM.EXAMPLE.COM
vi /etc/network/interfaces
dns-nameservers 192.168.1.2
cat /etc/network/interfaces
/etc/init.d/networking restart ping www.ya.ru
vi /usr/local/samba/share/setup/krb5.conf
SAMDOM.EXAMPLE.COM
mv /usr/local/samba/share/setup/krb5.conf /etc/krb5.conf cat /etc/krb5.conf
vi /etc/bind/named.conf.local
include "/usr/local/samba/private/named.conf";
cat /etc/bind/named.conf.local
vi /usr/local/samba/private/named.conf
cat /usr/local/samba/private/named.conf
vi /etc/bind/named.conf.options
tkey-gssapi-keytab "/usr/local/samba/private/dns.keytab";
cat /etc/bind/named.conf.options chgrp bind /usr/local/samba/private/dns.keytab chmod g+r /usr/local/samba/private/dns.keytab
/etc/init.d/bind9 restart
/usr/local/samba/sbin/samba /usr/local/samba/sbin/samba -i -M single
ping samdom.example.com /usr/local/samba/sbin/samba -V /usr/local/samba/bin/smbclient --version /usr/local/samba/bin/smbclient -L localhost -U% /usr/local/samba/bin/samba-tool user setpassword Administrator
/usr/local/samba/bin/smbclient //localhost/netlogon -UAdministrator%'Pa$$w0rd' -c 'ls' host -t SRV _ldap._tcp.samdom.example.com host -t SRV _kerberos._udp.samdom.example.com host -t A samba.samdom.example.com
/usr/local/samba/sbin/samba_dnsupdate --verbose --all-names
kinit Administrator@SAMDOM.EXAMPLE.COM klist
apt-get install ntp ntpdate ntpd -v
vi /etc/ntp.conf
server 127.127.1.0 fudge 127.127.1.0 stratum 10 server 0.pool.ntp.org iburst prefer server 1.pool.ntp.org iburst prefer driftfile /var/lib/ntp/ntp.drift logfile /var/log/ntp ntpsigndsocket/usr/local/samba/var/lib/ntp_signd/ restrict default kod nomodify notrap nopeer mssntp restrict 127.0.0.1 restrict 0.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery restrict 1.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery
cat /etc/ntp.conf service ntp restart exit
Ваш отзыв