Академический Документы
Профессиональный Документы
Культура Документы
SAMBA.ninja
(https://samba.ninja/)
SAMBA SOLUTIONS FROM MILD TO WILD
HOME (HTTPS://SAMBA.NINJA/)
ABOUT (HTTPS://SAMBA.NINJA/ABOUT/)
CONTACT (HTTPS://SAMBA.NINJA/CONTACT/)
Ubuntu 16.04 in an existing Windows Active Directory domain. It is assumed that you
have already installed a basic, functional Ubuntu server and configured details such as
timezone, fully-qualified hostname, etc. Your DNS servers should be set to IPs of AD DCs.
I used Ubuntu 16.04.1 and only installed the standard system utilities and OpenSSH
package sets through the installation wizard. I also specified the intended FQDN of the
server during installation which seemed to automate the installation of the heimdalclient package.
3. Restart networking:
5. Update NTP configuration for time synchronisation with your DC(s) (replacing the
escaped TEST.LOCAL with your AD domain) and restart NTPd:
10. Set /etc/samba/smb.conf to the following (ensuring you replace the bold TEST and
TEST.LOCAL with your own AD NetBIOS and domain names):
[global]
workgroup = TEST
server string = Samba Server Version %v
security = ads
realm = TEST.LOCAL
socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=131072 SO_SNDBU
F=131072
use sendfile = true
idmap config * : backend = tdb
idmap config * : range = 100000-299999
idmap config TEST : backend = rid
idmap config TEST : range = 10000-99999
winbind separator = +
winbind enum users = yes
winbind enum groups = yes
winbind use default domain = yes
winbind refresh tickets = yes
restrict anonymous = 2
log file = /var/log/samba/log.%m
max log size = 50
#============================ Share Definitions =========================
=====
[testshare]
comment = Test share
path = /samba/testshare
read only = no
force group = "Domain Users"
directory mask = 0770
force directory mode = 0770
create mask = 0660
force create mode = 0660
# wbinfo -g
* Should list your AD groups
# getent passwd
* Should list AD users with UIDs in the 10000+ range
# getent group
* Should list AD groups with UIDS in the 10000+ range
15. You should now be able to browse the share from any domain-joined server/client.
linux (https://samba.ninja/category/linux/), samba
(https://samba.ninja/category/samba/), ubuntu (https://samba.ninja/category/ubuntu/)
Leave a Reply
Your email address will not be published. Required fields are marked *
Comment
Name *
Email *
Website
Post Comment
Recent Posts
FreeBSD 11 SAMBA AD Member Server (https://samba.ninja/2016/10/freebsd-11samba-ad-member-server/) October 12, 2016
Recent Comments
Geoff Hodder (http://samba.ninja) on Ubuntu 15 SAMBA AD Member Server
(https://samba.ninja/2015/10/ubuntu-15-samba-ad-member-server/#comment-1501)
Bob Wooden on Ubuntu 15 SAMBA AD Member Server
(https://samba.ninja/2015/10/ubuntu-15-samba-ad-member-server/#comment-1486)
Categories
freebsd
(https://samba.ninja/category/freebsd/) linux
(https://samba.ninja/category/linux/) samba
(https://samba.ninja/category/samba/)
ubuntu (https://samba.ninja/category/ubuntu/)
(http://twitter.com/geoffhodder)
(http://au.linkedin.com/in/geoffhodder)