Upgrade da Samba3 tdbsam a Samba4 AD: Difference between revisions

From RVM Wiki
Jump to navigation Jump to search
VisualWikitext
Created page with "* L'upgrade è possibile in place o su un'altra macchina =Riferimenti= *[https://wiki.samba.org/index.php/Migrating_a_Samba_NT4_Domain_to_Samba_AD_(Classic_Upgrade) Migratin..."
 
mNo edit summary
 
(2 intermediate revisions by the same user not shown)
Line 1: Line 1:
* L'upgrade è possibile in place o su un'altra macchina
* L'upgrade è possibile in place o su un'altra macchina


=Preparazione files sul vecchio server=
* Verificare che non ci siano SID doppi e che i grupi siano mappati correttamente
pdbedit -Lv | grep 'User SID' | sort -n
net groupmap list
* Fermare tutti i servizi
<pre>
systemctl stop nmbd.service
systemctl stop smbd.service
systemctl stop winbind.service
<pre>
* Copiare i files che servono per l'upgrade:
<pre>
mkdir /var/lib/samba.OLD/dbdir/
cp -p /etc/passwd /var/lib/samba.OLD/dbdir/
cp -p /etc/group /var/lib/samba.OLD/dbdir/
cp /etc/samba/smb.conf /var/lib/samba.OLD/dbdir/smb.OLD.conf
cp -p /var/lib/samba.OLD/private/secrets.tdb /var/lib/samba.OLD/dbdir/
cp -p /var/lib/samba.OLD/private/schannel_store.tdb /var/lib/samba.OLD/dbdir/
cp -p /var/lib/samba.OLD/private/passdb.tdb /var/lib/samba.OLD/dbdir/
cp -p /var/lib/samba.OLD/var/lock/gencache_notrans.tdb /var/lib/samba.OLD/dbdir/
cp -p /var/lib/samba.OLD/var/locks/group_mapping.tdb /var/lib/samba.OLD/dbdir/
cp -p /var/lib/samba.OLD/var/locks/account_policy.tdb /var/lib/samba.OLD/dbdir/
</pre>
*  Fare un tar e trasferirlo sulla nuova macchina:
tar cvzf /tmp/dbdir.tar.gz /var/lib/samba.OLD/dbdir/
scp /tmp/dbdir.tar.gz pubsrv01.pubblistil.priv:/tmp
=Upgrade sulla nuova macchina=
* Installare samba e verificare la versione
apt-get install samba
samba --version
* Fermare tutti i servizi:
systemctl stop nmbd.service
systemctl stop smbd.service
pstree -p
* Scompattare i files originali e controllare che siano presenti:
cd /
tar -xvzf /tmp/dbdir.tar.gz
ls /var/lib/samba.OLD/
* Copiare i files necessari
cp /etc/passwd /etc/passwd.bak
cp /etc/group /etc/group.bak
cp /var/lib/samba.OLD/passwd /etc/passwd
cp /var/lib/samba.OLD/group /etc/group
cp /var/lib/samba.OLD/smb.conf /etc/samba/smb.conf
* TODO: eliminare tutti i .tdb esistenti
* Lanciare upgrade:
samba-tool \
    domain \
    classicupgrade \
    --dbdir=/var/lib/samba.OLD/dbdir/ \
    --use-xattrs=yes \
    --realm=pubblistil.priv \
    --dns-backend=BIND9_DLZ \
    /var/lib/samba.OLD/dbdir/smb.OLD.conf
* Se fallisce con un errore riguardo l'account administrator, e sul vecchio server, non si riesce a cambiare la password di Administrator, significa che l'account è corrotto, ed occorre eliminarlo:
sudo tdbtool /var/lib/samba.OLD/dbdir/passdb.tdb
keys
...
USER_administrator
...
delete USER_Administrator\0
* Ripetere l'upgrade


=Riferimenti=
=Riferimenti=
Line 11: Line 94:
*[http://edoceo.com/notabene/samba-rename-user Samba: Renaming a User]
*[http://edoceo.com/notabene/samba-rename-user Samba: Renaming a User]
*[https://wiki.samba.org/index.php/Setting_up_Samba_as_an_Active_Directory_Domain_Controller#Testing_your_Samba_AD_DC Setting up Samba as an Active Directory Domain Controller - SambaWiki]
*[https://wiki.samba.org/index.php/Setting_up_Samba_as_an_Active_Directory_Domain_Controller#Testing_your_Samba_AD_DC Setting up Samba as an Active Directory Domain Controller - SambaWiki]
*[https://ubuntuforums.org/archive/index.php/t-2156341.html [SOLVED] Samba pdbedit error [Archive] - Ubuntu Forums]
*[https://bugzilla.samba.org/show_bug.cgi?id=2344 Bug 2344 – tdbtool delete command fails]

Latest revision as of 16:11, 18 October 2017

  • L'upgrade è possibile in place o su un'altra macchina

Preparazione files sul vecchio server

  • Verificare che non ci siano SID doppi e che i grupi siano mappati correttamente
pdbedit -Lv | grep 'User SID' | sort -n

net groupmap list
  • Fermare tutti i servizi
systemctl stop nmbd.service 
systemctl stop smbd.service
systemctl stop winbind.service 
<pre>

* Copiare i files che servono per l'upgrade:

<pre>
mkdir /var/lib/samba.OLD/dbdir/
cp -p /etc/passwd /var/lib/samba.OLD/dbdir/
cp -p /etc/group /var/lib/samba.OLD/dbdir/
cp /etc/samba/smb.conf /var/lib/samba.OLD/dbdir/smb.OLD.conf
cp -p /var/lib/samba.OLD/private/secrets.tdb /var/lib/samba.OLD/dbdir/
cp -p /var/lib/samba.OLD/private/schannel_store.tdb /var/lib/samba.OLD/dbdir/
cp -p /var/lib/samba.OLD/private/passdb.tdb /var/lib/samba.OLD/dbdir/
cp -p /var/lib/samba.OLD/var/lock/gencache_notrans.tdb /var/lib/samba.OLD/dbdir/
cp -p /var/lib/samba.OLD/var/locks/group_mapping.tdb /var/lib/samba.OLD/dbdir/
cp -p /var/lib/samba.OLD/var/locks/account_policy.tdb /var/lib/samba.OLD/dbdir/
  • Fare un tar e trasferirlo sulla nuova macchina:
tar cvzf /tmp/dbdir.tar.gz /var/lib/samba.OLD/dbdir/
scp /tmp/dbdir.tar.gz pubsrv01.pubblistil.priv:/tmp

Upgrade sulla nuova macchina

  • Installare samba e verificare la versione
apt-get install samba
samba --version
  • Fermare tutti i servizi:
systemctl stop nmbd.service
systemctl stop smbd.service
pstree -p
  • Scompattare i files originali e controllare che siano presenti:
cd /
tar -xvzf /tmp/dbdir.tar.gz
ls /var/lib/samba.OLD/
  • Copiare i files necessari
cp /etc/passwd /etc/passwd.bak
cp /etc/group /etc/group.bak
cp /var/lib/samba.OLD/passwd /etc/passwd
cp /var/lib/samba.OLD/group /etc/group
cp /var/lib/samba.OLD/smb.conf /etc/samba/smb.conf
  • TODO: eliminare tutti i .tdb esistenti
  • Lanciare upgrade:
samba-tool \
   domain \
   classicupgrade \
   --dbdir=/var/lib/samba.OLD/dbdir/ \
   --use-xattrs=yes \
   --realm=pubblistil.priv \
   --dns-backend=BIND9_DLZ \
   /var/lib/samba.OLD/dbdir/smb.OLD.conf


  • Se fallisce con un errore riguardo l'account administrator, e sul vecchio server, non si riesce a cambiare la password di Administrator, significa che l'account è corrotto, ed occorre eliminarlo:
sudo tdbtool /var/lib/samba.OLD/dbdir/passdb.tdb

keys
...
USER_administrator
...
delete USER_Administrator\0
  • Ripetere l'upgrade

Riferimenti

Retrieved from "https://kb.rvmgroup.it/index.php?title=Upgrade_da_Samba3_tdbsam_a_Samba4_AD&oldid=10056"