Aggiungere un Domain Member Server Samba: Difference between revisions

From RVM Wiki
Jump to navigation Jump to search
VisualWikitext
m New page: Il modo più semplice è creare un Member Server in cui gli account locali vengono creati al bisogno. * Installare Samba sul nuovo server sudo aptitude install samba winbind * Creare il...
 
mNo edit summary
 
(One intermediate revision by the same user not shown)
Line 1: Line 1:
Il modo più semplice è creare un Member Server in cui gli account locali vengono creati al bisogno.
Il modo più semplice è creare un Member Server in cui gli account locali vengono creati al bisogno.


* Installare Samba sul nuovo server
* Installare Samba sul nuovo server (importante la libreria, altrimenti non autentica):
  sudo aptitude install samba winbind
  sudo aptitude install samba winbind libnss-winbind


* Creare il file Samba minimo:
* Creare il file Samba minimo:
Line 9: Line 9:
<pre>
<pre>
[global]
[global]
        unix charset = LOCALE
         workgroup = DOMAINNAME
         workgroup = DOMAINNAME
         netbios name = SERVERNAME
         netbios name = SERVERNAME
         security = DOMAIN
         security = DOMAIN
         server string = ServerName
         server string = ServerName
        log file = /var/log/samba/smbd
        idmap config * : backend = tdb
        idmap config * : range = 3000-7999
         add user script = /usr/sbin/useradd -m '%u'
         add user script = /usr/sbin/useradd -m '%u'
         add machine script = /usr/sbin/useradd -M '%u'
         add machine script = /usr/sbin/useradd -M '%u'
         add group script = /usr/sbin/groupadd '%g'
         add group script = /usr/sbin/groupadd '%g'
         log file = /var/log/samba/samba.log
         load printers = no
        printing = cups
        printcap name = /dev/null
        disable spoolss = yes
 
[ShareName]
[ShareName]
         path = /path/to/directory
         path = /path/to/directory
Line 25: Line 31:
</pre>
</pre>


* Riavviare i daemons:
* Impostare la risoluzione dei nomi windows
  sudo invoke-rc-d samba  restart
  sudoedit /etc/nsswitch.conf
  sudo invoke-rc-d winbind restart
 
  passwd:        compat winbind
group:          compat winbind


* Fare il join del dominio:
* Fare il join del dominio:
Line 33: Line 41:


  Joined domain DOMAINNAME.
  Joined domain DOMAINNAME.
* Riavviare i daemons:
systemctl enable smbd.service
systemctl enable winbind.service
systemctl restart smbd.service
systemctl restart winbind.service
* Verificare la risoluzione dei nomi:
getent passwd DOMAINNAME\\Administrator
DOMAINNAME\administrator:*:3000:3005:Administrator:/home/DOMAINNAME/administrator:/bin/false
* Accedere con smbclient:
  smbclient '\\192.168.1.1\myshare' -U administrator -W DOMAINNAME




==Riferimenti==
==Riferimenti==
*[https://wiki.samba.org/index.php/Setting_up_Samba_as_a_Domain_Member Setting up Samba as a Domain Member - SambaWiki]
*[https://wiki.samba.org/index.php/Troubleshooting_Samba_Domain_Members Troubleshooting Samba Domain Members - SambaWiki]
*[http://www.samba.org/samba/docs/man/Samba-Guide/unixclients.html#dcwonss Chapter 7. Adding Domain Member Servers and Clients:NT4/Samba Domain with Samba Domain Member Server without NSS Support]
*[http://www.samba.org/samba/docs/man/Samba-Guide/unixclients.html#dcwonss Chapter 7. Adding Domain Member Servers and Clients:NT4/Samba Domain with Samba Domain Member Server without NSS Support]

Latest revision as of 14:05, 19 December 2017

Il modo più semplice è creare un Member Server in cui gli account locali vengono creati al bisogno.

  • Installare Samba sul nuovo server (importante la libreria, altrimenti non autentica):
sudo aptitude install samba winbind libnss-winbind
  • Creare il file Samba minimo:
sudoedit /etc/samba/smb.conf

[global]
        workgroup = DOMAINNAME
        netbios name = SERVERNAME
        security = DOMAIN
        server string = ServerName
        log file = /var/log/samba/smbd
        idmap config * : backend = tdb
        idmap config * : range = 3000-7999
        add user script = /usr/sbin/useradd -m '%u'
        add machine script = /usr/sbin/useradd -M '%u'
        add group script = /usr/sbin/groupadd '%g'
        load printers = no
        printing = cups
        printcap name = /dev/null
        disable spoolss = yes

[ShareName]
        path = /path/to/directory
        comment = Share Description
        read only = No
        browseable = No
  • Impostare la risoluzione dei nomi windows
sudoedit /etc/nsswitch.conf

passwd:         compat winbind
group:          compat winbind
  • Fare il join del dominio:
sudo net rpc join -U administrator

Joined domain DOMAINNAME.


  • Riavviare i daemons:
systemctl enable smbd.service
systemctl enable winbind.service
systemctl restart smbd.service
systemctl restart winbind.service
  • Verificare la risoluzione dei nomi:
getent passwd DOMAINNAME\\Administrator

DOMAINNAME\administrator:*:3000:3005:Administrator:/home/DOMAINNAME/administrator:/bin/false
  • Accedere con smbclient:
 smbclient '\\192.168.1.1\myshare' -U administrator -W DOMAINNAME


Riferimenti

Retrieved from "https://kb.rvmgroup.it/index.php?title=Aggiungere_un_Domain_Member_Server_Samba&oldid=10089"