Create SAMBA Domain: Unterschied zwischen den Versionen

Aus darkrealm Wiki
Zur Navigation springen Zur Suche springen
Zum nächsten Versionsunterschied →
Die Seite wurde neu angelegt: „ 1. Create a Domain Administrator Account on Domain Server smbldap-useradd -a -c "Domain Administrator" -d /home/domadmin -g 512 -m -s /bin/bash -H [UHX] -N "Dom…“
 
Keine Bearbeitungszusammenfassung
Zeile 1: Zeile 1:
1. Create a Domain Administrator Account on Domain Server
1. Create a Domain Administrator Account on Domain Server


Zeile 12: Zeile 11:
Control Panel-> System -> Network Identification -> Enter Domain Name, then enter user/pass for domadmin
Control Panel-> System -> Network Identification -> Enter Domain Name, then enter user/pass for domadmin
                   must be done twice, 1st error "Benutzername konnte nicht gefunden werden, 2nd time it works
                   must be done twice, 1st error "Benutzername konnte nicht gefunden werden, 2nd time it works
3a. join WINDOWS 7 machine to domain
Change
            HKLM\System\CCS\Services\LanmanWorkstation\Parameters
            DWORD  DomainCompatibilityMode = 1
            DWORD  DNSNameResolutionRequired = 0
            (In Effect immediately, no restart required)
like 3) also twice.
        TODO: check why join domain twice


CREATING Domain Users:
CREATING Domain Users:
Zeile 26: Zeile 37:
   ( add user script in this case was : /usr/sbin/smbldap-useradd -B 1 -m "%u" )
   ( add user script in this case was : /usr/sbin/smbldap-useradd -B 1 -m "%u" )
   - TODO : check samba's Domain Users Group membership
   - TODO : check samba's Domain Users Group membership
  - TODO : check why -B 1 doesn't work (change password on 1st logon)


7. Log on as the new user
7. Log on as the new user
TODO : check why with ldapsam:trusted machine accounts still wont get their credentials

Version vom 10. November 2010, 01:59 Uhr

1. Create a Domain Administrator Account on Domain Server

smbldap-useradd -a -c "Domain Administrator" -d /home/domadmin -g 512 -m -s /bin/bash -H [UHX] -N "Domain Administrator" -P domadmin

2. Grant user domadmin Domain joining rights

net rpc rights grant domadmin SeMachineAccountPrivilege -U domadmin

3. join XP machine to domain

Control Panel-> System -> Network Identification -> Enter Domain Name, then enter user/pass for domadmin 

                 must be done twice, 1st error "Benutzername konnte nicht gefunden werden, 2nd time it works

3a. join WINDOWS 7 machine to domain

Change 

           HKLM\System\CCS\Services\LanmanWorkstation\Parameters
           DWORD  DomainCompatibilityMode = 1
           DWORD  DNSNameResolutionRequired = 0
           (In Effect immediately, no restart required)

like 3) also twice. 

       TODO: check why join domain twice


CREATING Domain Users:

4. Grant user domadmin user modification rights

net rpc rights grant domadmin SeAddUsersPrivilege -U domadmin

5. Log on onto domain as domuser

6. add an user to the domain

net user add donald test /add /domain 

 ( add user script in this case was : /usr/sbin/smbldap-useradd -B 1 -m "%u" )
 - TODO : check samba's Domain Users Group membership
 - TODO : check why -B 1 doesn't work (change password on 1st logon)

7. Log on as the new user




TODO : check why with ldapsam:trusted machine accounts still wont get their credentials

Abgerufen von „https://darkrealm-wiki.darkrealm.dyndns.org/index.php?title=Create_SAMBA_Domain&oldid=9