User Tools

Site Tools


user:thakes3:portfolio:misc:sambadc

Setting up a Simple Samba Domain Controller (VM)

This tutorial is setup in my xen visualization environment on the four horsemen project. To follow what i've done here, please make sure that you have a xen virtualization environment of your own to receive the full brunt of what i'm trying to accomplish

Start

I want need to replace an old samba domain controller in one of my client locations. The computer has since died and all of the user data was still on the old hard drive. As I am attempting to recover the data, i will also be creating a sambaDC from scratch to remake what was lost in the hard drive failure.

Begin

I started by rolling a brand new debian VM, for this i will call it nixDC. nixDC will have a Samba setup tied into OpenLDAP for the ability to roll out backup domain controllers, and also in multiple locations as well.

/etc/hosts make sure your FQDM is set right or else you will mess up

# aptitude install slapd ldap-utils

enter new admin password, make sure you remember it

# emacs /etc/ldap/ldap.conf
#
# LDAP Defaults
#
# See ldap.conf(5) for details
# This file should be world readable but not world writable.
BASE    dc=fhm,dc=cist
URI     ldap://server.fhm.cist ldap://server.fhm.cist:666
#SIZELIMIT      12
#TIMELIMIT      15
#DEREF          never
# TLS certificates (needed for GnuTLS)
TLS_CACERT      /etc/ssl/certs/ca-certificates.crt

re-run auto configger

# dpkg-reconfigure slapd

omit OpenLDAP server configuration no

enter DNS name fhm.cist

organization name nixDC

admin password – type it again

database backend HDB

do you want the database to be purged no

move old database? yes

allow LDAPv2 protocol? no

ldapsearch -x should now report back data, if not something's wrong

Phase2: phpldapadmin

this was a bitch to figure out the easiest way

# aptitude install phpldapadmin apache2 php5 php5-fpm
# rm -rf /etc/phpldapadmin/config.php
# dpkg-reconfigure phpldapadmin

type all the right stuff, broadcasting now on port 80

# ln -s /usr/share/phpldapadmin/ /var/www/phpldapadmin

Phase 3: make user acc stuff i guess

  • login as admin credz
  • create new group name it sales or something
  • create sub group name it sales-people or something
  • create user account for login name it salesguy or something

Phase 4: typing things to make samba work with ldap

Usefull shit

user/thakes3/portfolio/misc/sambadc.txt · Last modified: 2014/05/29 21:03 by thakes3