Re: How to install samba 4 as an active directory domain controller
hi, Luke and thanks for your appreciation.
"I am able to connect to my share folder when I go to map the drive. However I do not see them under windows networks. Any idea?"
You can see the shares from a windows machine just run \\ServerIP, it will ask for a login and password which will be administrator@yourdomain.xxx the password will be the one you set for administrator account on your samba.
Enjoy!
Also see that: http://askubuntu.com/questions/23674...ers-with-samba
Re: How to install samba 4 as an active directory domain controller
Hi all,
My setup is the following:
Proxmox VE 3.1
VM is:
OpenVZ ubuntu 12.04.2 64 bit
Im trying to get samba up and running on this VM and i have tried twice now.
One problem I have solved is that when ever i try to use smbclient or samba-tool i get a error saying it doesn't know the command. if i do ./smbclient or ./samba-tool it works.. don't know why that is???
So when i have installed my Samba4 i need to varify everything is working... my problem is when i get to this part:
Code:
listing administrative share will show you sysvol, netlogon shares etc....
/usr/local/samba/bin/smbclient -L localhost -U%
you should see somethin like this:
Sharename Type Comment
--------- ---- -------
netlogon Disk
sysvol Disk
IPC$ IPC IPC Service (Samba 4.0.5)
it means your server is up and running...
I get this errror:
Code:
root@DC01:/usr/local/samba/bin# ./smbclient -L localhost -U%
session setup failed: NT_STATUS_CONNECTION_REFUSED
How do i solve this?
This step also fails:
Code:
now you need to check authentication
/usr/local/samba/bin/smbclient //localhost/netlogon -UAdministrator%"your_password" -c 'ls'
you should see this:
Domain=[MYDOMAIN] OS=[Unix] Server=[Samba 4.0.5]
. D 0 Fri May 17 21:40:08 2013
.. D 0 Fri May 17 21:42:36 2013
with the error:
Code:
root@DC01:/usr/local/samba/bin# ./smbclient //localhost/netlogon -UAdministrator%"your_password" -c 'ls'
Connection to localhost failed (Error NT_STATUS_CONNECTION_REFUSED)
How do i fix this????
THANKS
Casper
Re: How to install samba 4 as an active directory domain controller
Quote:
I get this errror:
Code:
Code:
root@DC01:/usr/local/samba/bin# ./smbclient -L localhost -U%
session setup failed: NT_STATUS_CONNECTION_REFUSED
How do i solve this?
Please try:
Code:
kinit administrator@MYDOMAIN.LAN (has to be capital letters or will fail / will ask for your domain administrator password )
klist -e (will display informations about the kerberos ticket you received)
But it seems to me you messed up somewhere with Kerberos.
did you do this?
Code:
sudo apt-get update (I generally add "&& apt-get upgrade -y" so that my server is fully up to date)
sudo apt-get install git build-essential libacl1-dev libattr1-dev libblkid-dev libgnutls-dev libreadline-dev python-dev python-dnspython gdb pkg-config libpopt-dev libldap2-dev dnsutils libbsd-dev attr krb5-user docbook-xsl libcups2-dev libpam0g-dev ntp
It installs all requirement, Kerberos included.
Also you never just execute samba-tool or smbclient just like that unless you have them in your environement path. I explained it here : http://ubuntuforums.org/showthread.php?t=2171746
The commands are "/usr/local/samba/bin/samba-tool" and same for smbclient.
Don't cd to the directory.
you have to prefix them with "/usr/local/samba/bin/" or it doesn't work.
Re: How to install samba 4 as an active directory domain controller
Hi
Yes i did run the following commands:
Code:
sudo apt-get update (I generally add "&& apt-get upgrade -y" so that my server is fully up to date)
sudo apt-get install git build-essential libacl1-dev libattr1-dev libblkid-dev libgnutls-dev libreadline-dev python-dev python-dnspython gdb pkg-config libpopt-dev libldap2-dev dnsutils libbsd-dev attr krb5-user docbook-xsl libcups2-dev libpam0g-dev ntp
During the installation I was met with some questions from Kerberos that i don't think you guide adresse. At one point there comes this blue gui like screen where Kerberos asks for domain realm and PDC and BDC i think...
As fare as i remember i chose offerlamnet.local for realm and DC01 for both PDC and BDC.. maybe that wrong? perhaps i should just leave BDC blank since i have no BDC?
as for:
Code:
kinit administrator@MYDOMAIN.LAN (has to be capital letters or will fail / will ask for your domain administrator password )
klist -e (will display informations about the kerberos ticket you received)
I got this as response, definently looks like a Kerberos issue:
Code:
root@DC01:~# kinit administrator@OFFERLAMNET.LOCAL
kinit: Cannot contact any KDC for realm 'OFFERLAMNET.LOCAL' while getting initial credentials
root@DC01:~# klist -e
klist: No credentials cache found (ticket cache FILE:/tmp/krb5cc_0)
root@DC01:~#
Could i be because i CD to the directory that it fails on me? or will it work if you just use ./smbclient or ./samba-tool?? it looks like its working but that is from a untranied eyes perspektive :)
THANKS
Casper
Re: How to install samba 4 as an active directory domain controller
Quote:
During the installation I was met with some questions from Kerberos that i don't think you guide adresse. At one point there comes this blue gui like screen where Kerberos asks for domain realm and PDC and BDC i think...
it's in the guide that's not pdc and bdc (which don't exist in this context.) it's KDC and adminserver if you left one blank you found your problem.
please send over your /etc/krb5.conf and /usr/local/samba/etc/krb5.conf files. We ll correct the issue.
Quote:
Could i be because i CD to the directory that it fails on me? or will it work if you just use ./smbclient or ./samba-tool??
nope, not that problem. but by doing this you might encounter other problems
Re: How to install samba 4 as an active directory domain controller
Ok so i created a new VM and tried againg..
just to note i forgot to mention a perhaps very important fact I had to add
--use-ntvfs
In the end of the:
Code:
sudo apt-get install git build-essential libacl1-dev libattr1-dev libblkid-dev libgnutls-dev libreadline-dev python-dev python-dnspython gdb pkg-config libpopt-dev libldap2-dev dnsutils libbsd-dev attr krb5-user docbook-xsl libcups2-dev libpam0g-dev ntp -y
i don't know if that changes allot.. If i don't do that i get:
Code:
root@DC01:~/samba4# /usr/local/samba/bin/samba-tool domain provision --realm=offerlamnet.local --domain=OFFERLAMNET --adminpass="XXXXXXX" --server-role=dc --dns-backend=SAMBA_INTERNALYou are not root or your system do not support xattr, using tdb backend for attributes.
not using extended attributes to store ACLs and other metadata. If you intend to use this provision in production, rerun the script as root on a system supporting xattrs.
Looking up IPv4 addresses
Looking up IPv6 addresses
No IPv6 address will be assigned
set_nt_acl_no_snum: fset_nt_acl returned zero.
ERROR(<class 'samba.provision.ProvisioningError'>): Provision failed - ProvisioningError: Your filesystem or build does not support posix ACLs, which s3fs requires. Try the mounting the filesystem with the 'acl' option.
File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/domain.py", line 398, in run
use_rfc2307=use_rfc2307, skip_sysvolacl=False)
File "/usr/local/samba/lib/python2.7/site-packages/samba/provision/__init__.py", line 2042, in provision
raise ProvisioningError("Your filesystem or build does not support posix ACLs, which s3fs requires. Try the mounting the filesystem with the 'acl' option.")
Now during the Kerberos install where i get that blue background gui i wrote
offerlamnet.local in the first box
OFFERLAMNET in the second
and the two following i wrote DC01 in both..
I ran the samba command with the full string like this:
Code:
/usr/local/samba/bin/samba-tool bla bla bla
/usr/local/samba/sbin/samba
/usr/local/samba/sbin/samba -V
/usr/local/samba/bin/smbclient -V
/usr/local/samba/bin/smbclient bla bla bla
and i still got the error...
any advice?
THANKS
Casper
Re: How to install samba 4 as an active directory domain controller
I have my samba DC running on Proxmox 3.1 too. no probleme there.
Why did you add --use-ntvfs?
I think we might need to step up could you contact me via skype?
Re: How to install samba 4 as an active directory domain controller
Re: How to install samba 4 as an active directory domain controller
i followed the tutorial, all is fine....but i'm stuck here
any suggestions?
Re: How to install samba 4 as an active directory domain controller
yup, You have a kerberos issue.
Check /etc/krb5.conf and /usr/local/samba/share/setup/krb5.conf
Also, you can skype me if you want me to take a look and help you troubleshoot.