thr3ads.net - samba - [Samba] Connecting samba + winbind with 2 controllers windows domains. [May 2011]

If this information is useful, please help other people find it:
Share via:

Esteban Torres Rodríguez

2011-May-04 11:03 UTC

[Samba] Connecting samba + winbind with 2 controllers windows domains.

I have configured Samba + Winbind + AD. Currently my windows domain consists
of 2 servers and all the samba settings I have it on one of them.

How I can do so if one server fails windows, work with other Windows server?

I have only to add to server2 to the password server option in my smb.conf?


Use: samba-winbind-3.0.33 + 3.0.33

My krb5.conf:

[Logging]
 default = FILE: / var/log/krb5libs.log
 kdc = FILE: / var/log/krb5kdc.log
 admin_server = FILE: / var / log / kadmind.log

[Libdefaults]
 default_realm = DOMAIN.COM
 clockskew = 300
 dns_lookup_realm = false
 dns_lookup_kdc = false
 ticket_lifetime = 24h
 forward = yes

[Realms]
 DOMAIN.COM = {
  kdc = server1.domain.com
  admin_server = server1.domain.com
  default_domain = domain.com
 }
 domain.com = {
  kdc = server1.domain.com
  admin_server = server1.domain.com
  default_domain = domain.com
 }
 domain = {
  kdc = server1.domain.com
  admin_server = server1.domain.com
  default_domain = domain
 }
[Domain_realm]
 . Domain = domain
 . Domain.com = DOMAIN.COM

[Kdc]
profile = / var/kerberos/krb5kdc/kdc.conf

[Appdefaults]
 pam = {
   debug = false
   ticket_lifetime = 36000
   renew_lifetime = 36000
   forward = true
   krb4_convert = false
 }


My smb.conf

[Global]
   workgroup = DOMAIN
   realm = DOMAIN.COM
   preferred master = no
   server string = Server
   security = ADS
   encrypt passwords = yes
   password server = server1.domain.com
   domain master = no
   encrypt passwords = yes
   SO_KEEPALIVE TCP_NODELAY socket options = SO_RCVBUF = 8192 SO_SNDBUF
IPTOS_LOWDELAY = 8192
   dns proxy = yes
   log level = 3
   syslog = 0
   log file = / var / log / samba /% m
   max log size = 50
   winbind enum users = Yes
   winbind enum groups = Yes
   winbind use default domain = Yes
   winbind nested groups = Yes
   winbind cache time = 15
   idmap uid = 600-20000
   idmap gid = 600-20000
   idmap cache time = 30
   read raw = yes
   write raw = yes
   oplocks = yes
   max xmit = 65535
   getwd cache = yes

Maybe Matching Threads

Search for more possibly parallel threads

samba - May 2011 - Connecting samba + winbind with 2 controllers windows domains.

[Samba] Connecting samba + winbind with 2 controllers windows domains.

Maybe Matching Threads

Wisdom of the Ancients