Alberto Moreno
2018-Jul-02 23:45 UTC
[Samba] Centos 7 AD domain provision won't create named.conf
Hi guys. I'm preparing my migration from samab NT4 style to AD. I had follow some papers about, exist 1 step that I still don't if is right or don't. A lot of site show that once we run the command: samba-tool domain provision ... using BIND9_DLZ This step will create a named.conf inside ./private/named.conf I have run a lot of times the command, but won't see this file. Is normal? I have download the latest samba 4.8.3, running centos 7 update fresh installation. Thanks. -- LIving the dream...
Kacper Wirski
2018-Jul-03 05:59 UTC
[Samba] Centos 7 AD domain provision won't create named.conf
Hello, I don't know about provisioning, but when joining as DC to existing domain samba 4.8.3 with dns backend BIND9_DLZ all the bind related files are created inside "samba/bind-dns" directory inside /usr/local/samba, instead of the previous samba/private. I think there is new option to specify directory, were all bind related files are to be kept, and samba/bind-dns is the default value. Also, as a sidenote I noticed myself wrong behaviour of --dns-backend option during join of DC to existing domain with samba 4.8.3: If i run: samba-tool domain join my.domain DC --dns-backend=BIND9_DLZ -U'DOMAIN\Administrator' in my samba directory there will be "bind-dns" directory created, with "named.conf" inside, but file permissions are wrong (root:root instead of root:named), and named.keytab is created inside samba/private/. Once i run after join: samba_dnsupgrade --dns-backend=BIND9_DLZ All the files are created as they should (/samba/bind-dns/ has correct permissions and named.keytab is created/moved to this directory as well). This behaviour is repetitive, on centos 7.5 at least. Regards, Kacper W dniu 03.07.2018 o 01:45, Alberto Moreno via samba pisze:> Hi guys. > > I'm preparing my migration from samab NT4 style to AD. > > I had follow some papers about, exist 1 step that I still don't if is right > or don't. > > A lot of site show that once we run the command: > > samba-tool domain provision ... > using BIND9_DLZ > > This step will create a named.conf inside ./private/named.conf > > I have run a lot of times the command, but won't see this file. > > Is normal? > > I have download the latest samba 4.8.3, running centos 7 update fresh > installation. > > Thanks. >
Rowland Penny
2018-Jul-03 08:04 UTC
[Samba] Centos 7 AD domain provision won't create named.conf
On Mon, 2 Jul 2018 16:45:09 -0700 Alberto Moreno via samba <samba at lists.samba.org> wrote:> Hi guys. > > I'm preparing my migration from samab NT4 style to AD. > > I had follow some papers about, exist 1 step that I still don't if is > right or don't. > > A lot of site show that once we run the command: > > samba-tool domain provision ... > using BIND9_DLZ > > This step will create a named.conf inside ./private/named.confClose, but wrong ;-) What webpage are you following ? Whichever it is, STOP and read this: https://wiki.samba.org/index.php/Setting_up_Samba_as_an_Active_Directory_Domain_Controller and this: https://wiki.samba.org/index.php/Setting_up_a_BIND_DNS_Server Yes, a 'named.conf' is created, but it is NOT the main named.conf, it is one that needs to be included in your main named.conf. Towards the end of the provision command output, you should find a line similar to this: See /var/lib/samba/private/named.conf for an example configuration include file for BIND This will show you where the file is and you will need to add a line to your named conf files: include "/var/lib/samba/private/named.conf"; Rowland
Kacper Wirski
2018-Jul-03 08:08 UTC
[Samba] Centos 7 AD domain provision won't create named.conf
Hi, I think the author meant named.conf that is to be "included" into to main named.conf. And he's right, that in samba 4.8.3 all bind related files are not in /samba/private, as it used to, but rather in /samba/bind-dns (named.keytab, named.conf that is to be included and all other bind related files). So he's right, that file "named.conf" that used to appear in samba/private/ no longer appears there, as it was previously :). Unless he meant full named.conf, than of course it should be in /etc/named.conf on centos and you ought to manually add the include line and tkey... line for secure updates. Regards, Kacper W dniu 03.07.2018 o 10:04, Rowland Penny via samba pisze:> On Mon, 2 Jul 2018 16:45:09 -0700 > Alberto Moreno via samba <samba at lists.samba.org> wrote: > >> Hi guys. >> >> I'm preparing my migration from samab NT4 style to AD. >> >> I had follow some papers about, exist 1 step that I still don't if is >> right or don't. >> >> A lot of site show that once we run the command: >> >> samba-tool domain provision ... >> using BIND9_DLZ >> >> This step will create a named.conf inside ./private/named.conf > Close, but wrong ;-) > > What webpage are you following ? > Whichever it is, STOP and read this: > > https://wiki.samba.org/index.php/Setting_up_Samba_as_an_Active_Directory_Domain_Controller > > and this: > > https://wiki.samba.org/index.php/Setting_up_a_BIND_DNS_Server > > Yes, a 'named.conf' is created, but it is NOT the main named.conf, it > is one that needs to be included in your main named.conf. > > Towards the end of the provision command output, you should find a line > similar to this: > > See /var/lib/samba/private/named.conf for an example configuration > include file for BIND > > This will show you where the file is and you will need to add a line to > your named conf files: > > include "/var/lib/samba/private/named.conf"; > > Rowland > >
Maybe Matching Threads
- Centos 7 AD domain provision won't create named.conf
- Centos 7 AD domain provision won't create named.conf
- error in samba 4.10.0 while using samba-tool domain provision
- error in samba 4.10.0 while using samba-tool domain provision
- Problems with Internal DNS Samba 4