thr3ads.net - samba - [Samba] classicupgrade try #1 [Aug 2015]

If this information is useful, please help other people find it:
Share via:

Robert Moskowitz

2015-Aug-27 22:23 UTC

[Samba] classicupgrade try #1

So as I said, I grabbed EVERYTHING that was in the /etc/samba dir along 
with ALL .tbd files and ran:

# samba-tool domain classicupgrade --dbdir=/root/samba.PDC/dbdir/ 
--use-xattrs=yes --realm=home.htt --dns-backend=BIND9_DLZ 
/root/samba.PDC/etc/smb.conf

ANd it resulted in (note ldap error):

Reading smb.conf
NOTE: Service printers is flagged unavailable.
NOTE: Service print$ is flagged unavailable.
Unknown parameter encountered: "force directory security mode"
Ignoring unknown parameter "force directory security mode"
Provisioning
Exporting account policy
Exporting groups
Exporting users
Next rid = 1000
Exporting posix attributes
Reading WINS database
Looking up IPv4 addresses
Looking up IPv6 addresses
No IPv6 address will be assigned
Setting up secrets.ldb
Setting up the registry
Setting up the privileges database
Setting up idmap db
Setting up SAM db
Setting up sam.ldb partitions and settings
Setting up sam.ldb rootDSE
Pre-loading the Samba 4 and AD schema
Adding DomainDN: DC=home,DC=htt
Adding configuration container
Setting up sam.ldb schema
Setting up sam.ldb configuration data
Setting up display specifiers
Modifying display specifiers
Adding users container
Modifying users container
Adding computers container
Modifying computers container
Setting up sam.ldb data
Setting up well known security principals
Setting up sam.ldb users and groups
Setting up self join
Setting acl on sysvol skipped
Adding DNS accounts
Creating CN=MicrosoftDNS,CN=System,DC=home,DC=htt
Creating DomainDnsZones and ForestDnsZones partitions
Populating DomainDnsZones and ForestDnsZones partitions
See /var/lib/samba/private/named.conf for an example configuration 
include file for BIND
and /var/lib/samba/private/named.txt for further documentation required 
for secure DNS updates
Setting up sam.ldb rootDSE marking as synchronized
Fixing provision GUIDs
A Kerberos configuration suitable for Samba 4 has been generated at 
/var/lib/samba/private/krb5.conf
Setting up fake yp server settings
Once the above files are installed, your Samba4 server will be ready to use
Admin password:        ---------------
Server Role:           active directory domain controller
Hostname:              homebase
NetBIOS Domain:        HOME
DNS Domain:            home.htt
DOMAIN SID:            S-1-5-21-4240919292-2417995422-4236335894
Importing WINS database
Importing Account policy
Importing idmap database
Cannot open idmap database, Ignoring: [Errno 2] No such file or directory
Adding groups
Importing groups
Committing 'add groups' transaction to disk
Adding users
Importing users
Committing 'add users' transaction to disk
Adding users to groups
Committing 'add users to groups' transaction to disk

Rowland Penny

2015-Aug-28 07:56 UTC

head link

[Samba] classicupgrade try #1

On 27/08/15 23:23, Robert Moskowitz wrote:> So as I said, I grabbed EVERYTHING that was in the /etc/samba dir 
> along with ALL .tbd files and ran:
>
> # samba-tool domain classicupgrade --dbdir=/root/samba.PDC/dbdir/ 
> --use-xattrs=yes --realm=home.htt --dns-backend=BIND9_DLZ 
> /root/samba.PDC/etc/smb.conf
>
> ANd it resulted in (note ldap error):
>
> Reading smb.conf
> NOTE: Service printers is flagged unavailable.
> NOTE: Service print$ is flagged unavailable.
> Unknown parameter encountered: "force directory security mode"
> Ignoring unknown parameter "force directory security mode"
> Provisioning
> Exporting account policy
> Exporting groups
> Exporting users
> Next rid = 1000
> Exporting posix attributes
> Reading WINS database
> Looking up IPv4 addresses
> Looking up IPv6 addresses
> No IPv6 address will be assigned
> Setting up secrets.ldb
> Setting up the registry
> Setting up the privileges database
> Setting up idmap db
> Setting up SAM db
> Setting up sam.ldb partitions and settings
> Setting up sam.ldb rootDSE
> Pre-loading the Samba 4 and AD schema
> Adding DomainDN: DC=home,DC=htt
> Adding configuration container
> Setting up sam.ldb schema
> Setting up sam.ldb configuration data
> Setting up display specifiers
> Modifying display specifiers
> Adding users container
> Modifying users container
> Adding computers container
> Modifying computers container
> Setting up sam.ldb data
> Setting up well known security principals
> Setting up sam.ldb users and groups
> Setting up self join
> Setting acl on sysvol skipped
> Adding DNS accounts
> Creating CN=MicrosoftDNS,CN=System,DC=home,DC=htt
> Creating DomainDnsZones and ForestDnsZones partitions
> Populating DomainDnsZones and ForestDnsZones partitions
> See /var/lib/samba/private/named.conf for an example configuration 
> include file for BIND
> and /var/lib/samba/private/named.txt for further documentation 
> required for secure DNS updates
> Setting up sam.ldb rootDSE marking as synchronized
> Fixing provision GUIDs
> A Kerberos configuration suitable for Samba 4 has been generated at 
> /var/lib/samba/private/krb5.conf
> Setting up fake yp server settings
> Once the above files are installed, your Samba4 server will be ready 
> to use
> Admin password:        ---------------
> Server Role:           active directory domain controller
> Hostname:              homebase
> NetBIOS Domain:        HOME
> DNS Domain:            home.htt
> DOMAIN SID:            S-1-5-21-4240919292-2417995422-4236335894
> Importing WINS database
> Importing Account policy
> Importing idmap database
> Cannot open idmap database, Ignoring: [Errno 2] No such file or directory
> Adding groups
> Importing groups
> Committing 'add groups' transaction to disk
> Adding users
> Importing users
> Committing 'add users' transaction to disk
> Adding users to groups
> Committing 'add users to groups' transaction to disk
>
>
What ldap error?
As far as I can see, you just upgraded to AD

Rowland

Robert Moskowitz

2015-Aug-28 09:47 UTC

head link

[Samba] classicupgrade try #1

On 08/28/2015 03:56 AM, Rowland Penny wrote:> On 27/08/15 23:23, Robert Moskowitz wrote:
>> So as I said, I grabbed EVERYTHING that was in the /etc/samba dir 
>> along with ALL .tbd files and ran:
>>
>> # samba-tool domain classicupgrade --dbdir=/root/samba.PDC/dbdir/ 
>> --use-xattrs=yes --realm=home.htt --dns-backend=BIND9_DLZ 
>> /root/samba.PDC/etc/smb.conf
>>
>> ANd it resulted in (note ldap error):
>>
>> Reading smb.conf
>> NOTE: Service printers is flagged unavailable.
>> NOTE: Service print$ is flagged unavailable.
>> Unknown parameter encountered: "force directory security
mode"
>> Ignoring unknown parameter "force directory security mode"
>> Provisioning
>> Exporting account policy
>> Exporting groups
>> Exporting users
>> Next rid = 1000
>> Exporting posix attributes
>> Reading WINS database
>> Looking up IPv4 addresses
>> Looking up IPv6 addresses
>> No IPv6 address will be assigned
>> Setting up secrets.ldb
>> Setting up the registry
>> Setting up the privileges database
>> Setting up idmap db
>> Setting up SAM db
>> Setting up sam.ldb partitions and settings
>> Setting up sam.ldb rootDSE
>> Pre-loading the Samba 4 and AD schema
>> Adding DomainDN: DC=home,DC=htt
>> Adding configuration container
>> Setting up sam.ldb schema
>> Setting up sam.ldb configuration data
>> Setting up display specifiers
>> Modifying display specifiers
>> Adding users container
>> Modifying users container
>> Adding computers container
>> Modifying computers container
>> Setting up sam.ldb data
>> Setting up well known security principals
>> Setting up sam.ldb users and groups
>> Setting up self join
>> Setting acl on sysvol skipped
>> Adding DNS accounts
>> Creating CN=MicrosoftDNS,CN=System,DC=home,DC=htt
>> Creating DomainDnsZones and ForestDnsZones partitions
>> Populating DomainDnsZones and ForestDnsZones partitions
>> See /var/lib/samba/private/named.conf for an example configuration 
>> include file for BIND
>> and /var/lib/samba/private/named.txt for further documentation 
>> required for secure DNS updates
>> Setting up sam.ldb rootDSE marking as synchronized
>> Fixing provision GUIDs
>> A Kerberos configuration suitable for Samba 4 has been generated at 
>> /var/lib/samba/private/krb5.conf
>> Setting up fake yp server settings
>> Once the above files are installed, your Samba4 server will be ready 
>> to use
>> Admin password:        ---------------
>> Server Role:           active directory domain controller
>> Hostname:              homebase
>> NetBIOS Domain:        HOME
>> DNS Domain:            home.htt
>> DOMAIN SID:            S-1-5-21-4240919292-2417995422-4236335894
>> Importing WINS database
>> Importing Account policy
>> Importing idmap database
>> Cannot open idmap database, Ignoring: [Errno 2] No such file or 
>> directory
What is this error about?
>> Adding groups
>> Importing groups
>> Committing 'add groups' transaction to disk
>> Adding users
>> Importing users
>> Committing 'add users' transaction to disk
>> Adding users to groups
>> Committing 'add users to groups' transaction to disk
>>
>>
>
> What ldap error?
Too fast last evening...  See above about idmap, not ldap.  ARGH!
> As far as I can see, you just upgraded to AD
That is good to know.

Reasonably Related Threads

Search for more possibly parallel threads

samba - Aug 2015 - classicupgrade try #1

[Samba] classicupgrade try #1

[Samba] classicupgrade try #1

[Samba] classicupgrade try #1

Reasonably Related Threads