• View
• Edit
• History
• Print

Samba4

Samba AD HowTo

The official HowTo

Samba 4 AD from source using Ubuntu 12.04

this one uses samba's internal DNS

Samba 4 AD using Ubuntu 12.04

this one uses Bind9

Samba AD management from windows - SambaWiki

Joining a samba 3 server to AD

Bind MacOS X to AD

sudo apt-get install git build-essential libacl1-dev libattr1-dev libblkid-dev libgnutls-dev libreadline-dev python-dev python-dnspython gdb pkg-config libpopt-dev libldap2-dev dnsutils libbsd-dev attr krb5-user docbook-xsl libcups2-dev libpam0g-dev ntp

When prompted for kerberos realm, use planned AD domain (e.g., DOMAIN.lan or evermore.lan)

git clone -b v4-0-stable git://git.samba.org/samba.git samba4

./configure --enable-debug --enable-selftest

make

make install

/usr/local/samba/bin/samba-tool domain provision --use-rfc2307 --realm=evermore.lan --domain=evermore --adminpass="PASSWORD" --server-role=dc --dns-backend=SAMBA_INTERNAL

/usr/local/samba/sbin/samba

/usr/local/samba/sbin/samba -V

/usr/local/samba/bin/smbclient -V

Look for matching versions.

/usr/local/samba/bin/smbclient -L localhost -U%

Adjusting Password Requirements

samba-tool domain passwordsettings show
samba-tool domain passwordsettings set --help
--complexity
--store-plaintext
--history-length
--min-pwd-length
--min-pwd-age
--max-pwd-age
samba-tool domain passwordsettings set --complexity on
samba-tool domain passwordsettings set --history-length 8
samba-tool domain passwordsettings set --min-pwd-length 10
samba-tool domain passwordsettings set --min-pwd-age 30
samba-tool domain passwordsettings set --max-pwd-age 90

Managing DNS Entries

samba-tool dns query SERVER DOMAIN @ A -Uadministrator%PASSWORD

samba-tool dns delete SERVER DOMAIN WORKSTATION A IP_ADDRESS -Uadministrator%PASSWORD

samba-tool dns add SERVER DOMAIN WORKSTATION A IP_ADDRESS -Uadministrator%PASSWORD