Hi,
I'm folowing the tutorial:
https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End
But, the follows file there isn't in my DC, so can I to create it manually?
/usr/local/samba/bind-dns/named.conf file and uncomment the module for your
BIND version. For example:
dlz "AD DNS Zone" {
# For BIND 9.10
database "dlopen /usr/local/samba/lib/bind9/dlz_bind9_10.so";
My lib is in:
find / -name dlz_bind9_10.so
/usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_10.so
Regards,
M?rcio Bacci
Em s?b, 31 de ago de 2019 ?s 04:09, Rowland penny via samba <
samba at lists.samba.org> escreveu:
> On 31/08/2019 04:28, Marcio Demetrio Bacci via samba wrote:
> > Hi,
> >
> > I have updated my DC's to Samba 4.10.7, but I still can't add
a new DC to
> > the domain. I believe the problem is with Samba Internal DNS.
> >
> > So I would like to convert my DNS from Internal DNS to Bind9_DLZ of
the
> > production DC's. Then I will join a new DC to the domain to see if
it
> works.
> >
> > I checked the tutorials:
> > https://wiki.samba.org/index.php/Setting_up_a_BIND_DNS_Server
> >
> https://wiki.samba.org/index.php/Changing_the_DNS_Back_End_of_a_Samba_AD_DC
> >
> > But I found it a little complicated.
> >
> > I'm in doubt if I have to configure all DNS zones manually
(servers,
> > networks, ptr, records, A records, CNAMES and others) as a simple Bind
or
> > if automatically configures it when do samba adjustments to turn it in
> > Bind9_DLZ (samba_upgradedns --dns-backend=BIND9_DLZ).
> >
> > Could anybody help me?
> >
> > Regards,
> >
> > M?rcio Bacci
>
> It is fairly simple ;-)
>
> Read and follow:
>
>
>
https://wiki.samba.org/index.php/Setting_up_a_BIND_DNS_Server#Installing_.26_Configuring_BIND_on_Debian_based_distros
>
> # Check and correct rights if required
> # Check that the permissions on /var/lib/samba/bind-dns are
'drwxrwx---'
> # If not:
> chmod 770 /var/lib/samba/bind-dns
>
> # Check that the 'bind' is the group for
/var/lib/samba/bind-dns/dns.keytab
> # If not:
> chown root:bind /usr/local/samba/private/dns.keytab
> chmod 640 /usr/local/samba/private/dns.keytab
>
> # Run the following command:
>
> /usr/sbin/samba_upgradedns --dns-backend=BIND9_DLZ
>
> # Alter smb.conf
>
> # Change the "server services" parameter:
>
> # If the line is there and contains 'dns', remove 'dns', if
it doesn't
> contain 'dns' you do not need to do anything.
>
> # If the line isn't there (more likely), add 'server services
-dns'
>
> # remove the forwarders line
>
> service bind9 restart
>
> service samba restart
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
>
Hi,># Check and correct rights if required ># Check that the permissions on /var/lib/samba/bind-dns are 'drwxrwx---' ># If not: >chmod 770 /var/lib/samba/bind-dnsThe "bind-dns" directoy there isn't in my DC.># Check that the 'bind' is the group for /var/lib/samba/bind-dns/dns.keytab ># If not: >chown root:bind /usr/local/samba/private/dns.keytab >chmod 640 /usr/local/samba/private/dns.keytabThe "dns.keytab" file there isn't in my DC What should I do? Regards, M?rcio Bacci Em dom, 1 de set de 2019 ?s 19:28, Marcio Demetrio Bacci < marciobacci at gmail.com> escreveu:> Hi, > > I'm folowing the tutorial: > https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End > > But, the follows file there isn't in my DC, so can I to create it manually? > > /usr/local/samba/bind-dns/named.conf file and uncomment the module for > your BIND version. For example: > dlz "AD DNS Zone" { > # For BIND 9.10 > database "dlopen /usr/local/samba/lib/bind9/dlz_bind9_10.so"; > > My lib is in: > > find / -name dlz_bind9_10.so > /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_10.so > > Regards, > > M?rcio Bacci > > Em s?b, 31 de ago de 2019 ?s 04:09, Rowland penny via samba < > samba at lists.samba.org> escreveu: > >> On 31/08/2019 04:28, Marcio Demetrio Bacci via samba wrote: >> > Hi, >> > >> > I have updated my DC's to Samba 4.10.7, but I still can't add a new DC >> to >> > the domain. I believe the problem is with Samba Internal DNS. >> > >> > So I would like to convert my DNS from Internal DNS to Bind9_DLZ of the >> > production DC's. Then I will join a new DC to the domain to see if it >> works. >> > >> > I checked the tutorials: >> > https://wiki.samba.org/index.php/Setting_up_a_BIND_DNS_Server >> > >> https://wiki.samba.org/index.php/Changing_the_DNS_Back_End_of_a_Samba_AD_DC >> > >> > But I found it a little complicated. >> > >> > I'm in doubt if I have to configure all DNS zones manually (servers, >> > networks, ptr, records, A records, CNAMES and others) as a simple Bind >> or >> > if automatically configures it when do samba adjustments to turn it in >> > Bind9_DLZ (samba_upgradedns --dns-backend=BIND9_DLZ). >> > >> > Could anybody help me? >> > >> > Regards, >> > >> > M?rcio Bacci >> >> It is fairly simple ;-) >> >> Read and follow: >> >> >> https://wiki.samba.org/index.php/Setting_up_a_BIND_DNS_Server#Installing_.26_Configuring_BIND_on_Debian_based_distros >> >> # Check and correct rights if required >> # Check that the permissions on /var/lib/samba/bind-dns are 'drwxrwx---' >> # If not: >> chmod 770 /var/lib/samba/bind-dns >> >> # Check that the 'bind' is the group for >> /var/lib/samba/bind-dns/dns.keytab >> # If not: >> chown root:bind /usr/local/samba/private/dns.keytab >> chmod 640 /usr/local/samba/private/dns.keytab >> >> # Run the following command: >> >> /usr/sbin/samba_upgradedns --dns-backend=BIND9_DLZ >> >> # Alter smb.conf >> >> # Change the "server services" parameter: >> >> # If the line is there and contains 'dns', remove 'dns', if it doesn't >> contain 'dns' you do not need to do anything. >> >> # If the line isn't there (more likely), add 'server services -dns' >> >> # remove the forwarders line >> >> service bind9 restart >> >> service samba restart >> >> >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/samba >> >
On 01/09/2019 23:28, Marcio Demetrio Bacci wrote:> Hi, > > I'm folowing the tutorial: > https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End > > But, the follows file there isn't in my DC, so can I to create it > manually?No, you shouldn't have to, have you followed this first: https://wiki.samba.org/index.php/Changing_the_DNS_Back_End_of_a_Samba_AD_DC What version of Samba is this ? Earlier versions placed the files in /usr/local/samba/private, but this path is based on a self compiled Samba version using the default prefix '/usr/local/samba'|| Yours will probably be '/var/lib/samba' Rowland
Hi,>No, you shouldn't have to, have you followed this first:I followed, but there are instructions in this tutorial to configure Bind9_DLZ first, as below: - Set up and configure the BIND9_DLZ back end. For details, see BIND9_DLZ Back End <https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End>.> What version of Samba is this ?Samba 4.10.7>Yours will probably be '/var/lib/samba'No, there aren't in my DC (I have searched with find / -name <file>). Will files ( "/usr/local/samba/bind-dns/named.conf" and "dns.keytab" ) be created after I run the command samba_upgradedns --dns-backend=BIND9_DLZ ? Regards, M?rcio Bacci m seg, 2 de set de 2019 ?s 04:38, Rowland penny via samba < samba at lists.samba.org> escreveu:> On 01/09/2019 23:28, Marcio Demetrio Bacci wrote: > > Hi, > > > > I'm folowing the tutorial: > > https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End > > > > But, the follows file there isn't in my DC, so can I to create it > > manually? > > No, you shouldn't have to, have you followed this first: > > https://wiki.samba.org/index.php/Changing_the_DNS_Back_End_of_a_Samba_AD_DC > > What version of Samba is this ? > > Earlier versions placed the files in /usr/local/samba/private, but this > path is based on a self compiled Samba version using the default prefix > '/usr/local/samba'|| > > Yours will probably be '/var/lib/samba' > > Rowland > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >