Simon Matthews
2020-Aug-25 23:33 UTC
[Samba] Creating a new Samba BDC and promoting to PDC
If I go with the suggestion to just set up a new AD-DC server, how do I move my data to this from the old server (which uses TDBSAM)? Simon On 8/10/20 2:34 AM, L.P.H. van Belle via samba wrote:> > >> -----Oorspronkelijk bericht----- >> Van: samba [mailto:samba-bounces at lists.samba.org] Namens >> Simon Matthews via samba >> Verzonden: maandag 10 augustus 2020 2:27 >> Aan: samba at lists.samba.org >> Onderwerp: [Samba] Creating a new Samba BDC and promoting to PDC >> >> Is there a good document on bringing up a new Samba 4 BDC and >> promoting it to PDC in my NT-style domain environment? > Dont, its a waist of time, really > >> Moving to AD-style domain is something I should do, but >> moving my PDC to another machine is more urgent. > Then urgently, setup a new AD-DC server + 1 member, move the old data to the member.If I go with the suggestion to just set up a new AD-DC server, how do I move my data to this from the old server (which uses TDBSAM)? Can I just copy the files in /var/lib/samba/? The old server is running Samba 4.2.11, and, because of decisions made by a former manager, can no longer be updated. My plan is to migrate to CentOS 7. My approach is going to be to set up the new server in a NAT jail, so that I can get it working without worrying about the clients. Then, when I am satisfied it is working, to fully expose it on the LAN. Simon> You can, if the username/password are the same, setup like this: > > DOM\ > NEWDOM\ > > Passthrougth auth will work for windows.. > > winbind use default domain = yes > > to make it see as user:group again > > > I see you use Centos, im not much help with Centos, sorry. Im a Debian guy, > but with above you can setup new and keep old running as far its needed. > :-/ doing that for 4 years now.. But not im really moving my last smb1 servers out. > New pc's are added to the new domain with in GPO a drive mapping to old servers. > > > Greetz, > > Louis > > > > > >Blue Pearl Software, Inc. will collect and process information about you that may be subject to data protection laws. For more information about how we use and disclose your personal information, how we protect your information, our legal basis to use your information, your rights and who you can contact, please refer to the relevant sections of our Privacy note at www.bluepearlsoftware.com/privacypolicy.
On 26/08/2020 00:33, Simon Matthews via samba wrote:> If I go with the suggestion to just set up a new AD-DC server, how do I > move my data to this from the old server (which uses TDBSAM)?You could start by reading this: https://wiki.samba.org/index.php/Migrating_a_Samba_NT4_Domain_to_Samba_AD_(Classic_Upgrade) Could I also suggest that you do not use Centos, mainly because there are no distro packages that can be used to create an AD domain. Yes, there are third party packages available, but most of the knowledge on here is based around Debian based distros. Rowland
Simon Matthews
2020-Aug-26 17:29 UTC
[Samba] Creating a new Samba BDC and promoting to PDC
On 8/25/20 11:39 PM, Rowland penny via samba wrote:> On 26/08/2020 00:33, Simon Matthews via samba wrote: >> If I go with the suggestion to just set up a new AD-DC server, how do I >> move my data to this from the old server (which uses TDBSAM)? > > You could start by reading this: > > https://wiki.samba.org/index.php/Migrating_a_Samba_NT4_Domain_to_Samba_AD_(Classic_Upgrade) > > > Could I also suggest that you do not use Centos, mainly because there > are no distro packages that can be used to create an AD domain. Yes, > there are third party packages available, but most of the knowledge on > here is based around Debian based distros.Thanks for stopping me from wasting a lot of time with CentOS. Would Ubuntu work? Reading the document, it looks like I don't actually have to get the new DC running before the Classic Upgrade -- I just need to have the files in appropriate locations. Is this correct? Simon> > Rowland > > >Blue Pearl Software, Inc. will collect and process information about you that may be subject to data protection laws. For more information about how we use and disclose your personal information, how we protect your information, our legal basis to use your information, your rights and who you can contact, please refer to the relevant sections of our Privacy note at www.bluepearlsoftware.com/privacypolicy.