Esteban Torres RodrÃguez
2011-May-04 11:03 UTC
[Samba] Connecting samba + winbind with 2 controllers windows domains.
I have configured Samba + Winbind + AD. Currently my windows domain consists of 2 servers and all the samba settings I have it on one of them. How I can do so if one server fails windows, work with other Windows server? I have only to add to server2 to the password server option in my smb.conf? Use: samba-winbind-3.0.33 + 3.0.33 My krb5.conf: [Logging] default = FILE: / var/log/krb5libs.log kdc = FILE: / var/log/krb5kdc.log admin_server = FILE: / var / log / kadmind.log [Libdefaults] default_realm = DOMAIN.COM clockskew = 300 dns_lookup_realm = false dns_lookup_kdc = false ticket_lifetime = 24h forward = yes [Realms] DOMAIN.COM = { kdc = server1.domain.com admin_server = server1.domain.com default_domain = domain.com } domain.com = { kdc = server1.domain.com admin_server = server1.domain.com default_domain = domain.com } domain = { kdc = server1.domain.com admin_server = server1.domain.com default_domain = domain } [Domain_realm] . Domain = domain . Domain.com = DOMAIN.COM [Kdc] profile = / var/kerberos/krb5kdc/kdc.conf [Appdefaults] pam = { debug = false ticket_lifetime = 36000 renew_lifetime = 36000 forward = true krb4_convert = false } My smb.conf [Global] workgroup = DOMAIN realm = DOMAIN.COM preferred master = no server string = Server security = ADS encrypt passwords = yes password server = server1.domain.com domain master = no encrypt passwords = yes SO_KEEPALIVE TCP_NODELAY socket options = SO_RCVBUF = 8192 SO_SNDBUF IPTOS_LOWDELAY = 8192 dns proxy = yes log level = 3 syslog = 0 log file = / var / log / samba /% m max log size = 50 winbind enum users = Yes winbind enum groups = Yes winbind use default domain = Yes winbind nested groups = Yes winbind cache time = 15 idmap uid = 600-20000 idmap gid = 600-20000 idmap cache time = 30 read raw = yes write raw = yes oplocks = yes max xmit = 65535 getwd cache = yes
Apparently Analagous Threads
- winbind Problems with Trusted DOMAINs - wbinfo -m show only 3 of 16 DOMAINs - Windows 2008 DOMAIN
- Unable to access shared folders from domain members
- Winbind authentication over transitive trusts between multiple W2k3 Domains
- probleme with samba 3.4.5-5.1 + winbind+ windows 2008 R2 + trusted domain
- TR: probleme with samba 3.4.5-3.1 + winbind+ windows 2008 R2 + trusted domain