On 27/08/15 22:20, Robert Moskowitz wrote:> > > On 08/27/2015 05:10 PM, Rowland Penny wrote: >> On 27/08/15 22:00, Robert Moskowitz wrote: >>> Ah, LDAP is included within Samba, I find. Don't install provided >>> one... >>> >>> I suppose I will have to find what schemas, particularly if the bind >>> dlz schema is included? >> >> ER, you don't actually need to add any extra schemas, it is all built >> into samba4 when run as an AD DC, if you are struggling to understand >> this, just think a windows AD DC but running on Linux. > > I abandoned Win servers around the time of Win2000! No AD experience > here! I still run my home as an NT Domain; I am trying to get with > the future here. > >> The next thing to understand is if you want an AD DC and want to use >> an rpm based OS (centos, clearos etc) then you cannot use the distro >> packages, at the moment, there aren't any. What you can use are the >> packages supplied by Sernet: http://www.samba.plus/home/ > > That is why I have had help buiding the sernet 4.2 for me distro. yes, > this is a Centos 7 system. And more it is the development distro for > C7-armv7l. So some stuff is not present. But the my sernet 4.2 rpms > were built on the QEMU server they are using for all this work. > > ERGO, I SHOULD have everything in some place resembling where sernet > puts it. > >> >> This is not a bad thing really, as you get more uptodate versions, >> 4.2.3 at the moment > > For now we will have to build our own. If I show this to be viable, > perhaps we can automate it. >OOPS, sorry forgot you are on ARM, but having said that, if Sernet have supplied you with an ARM samba4 package it should be able to be used an AD DC unless they said otherwise, might be an idea to ask them. Initially when you install the X86 Sernet packages, they do not know what they are going to do, AD DC, NT4-style PDC, member server or a standalone workgroup server, it can be any of these. It is up to the sysadmin (i.e. you) to tell it what to be, you do this by setting up smb.conf for all except the first, an AD DC. To set up an AD DC, you need to run 'samba-tool domain provision' , this will populate, amongst others, the private dir. Rowland
On 08/27/2015 05:33 PM, Rowland Penny wrote:> On 27/08/15 22:20, Robert Moskowitz wrote: >> >> >> On 08/27/2015 05:10 PM, Rowland Penny wrote: >>> On 27/08/15 22:00, Robert Moskowitz wrote: >>>> Ah, LDAP is included within Samba, I find. Don't install provided >>>> one... >>>> >>>> I suppose I will have to find what schemas, particularly if the >>>> bind dlz schema is included? >>> >>> ER, you don't actually need to add any extra schemas, it is all >>> built into samba4 when run as an AD DC, if you are struggling to >>> understand this, just think a windows AD DC but running on Linux. >> >> I abandoned Win servers around the time of Win2000! No AD experience >> here! I still run my home as an NT Domain; I am trying to get with >> the future here. >> >>> The next thing to understand is if you want an AD DC and want to use >>> an rpm based OS (centos, clearos etc) then you cannot use the distro >>> packages, at the moment, there aren't any. What you can use are the >>> packages supplied by Sernet: http://www.samba.plus/home/ >> >> That is why I have had help buiding the sernet 4.2 for me distro. >> yes, this is a Centos 7 system. And more it is the development >> distro for C7-armv7l. So some stuff is not present. But the my >> sernet 4.2 rpms were built on the QEMU server they are using for all >> this work. >> >> ERGO, I SHOULD have everything in some place resembling where sernet >> puts it. >> >>> >>> This is not a bad thing really, as you get more uptodate versions, >>> 4.2.3 at the moment >> >> For now we will have to build our own. If I show this to be viable, >> perhaps we can automate it. >> > > OOPS, sorry forgot you are on ARM, but having said that, if Sernet > have supplied you with an ARM samba4 package it should be able to be > used an AD DC unless they said otherwise, might be an idea to ask them.One of the C7-arm developers pulled down the sernet 4.2 Centos7 source and built that on the armv7l build system. It completed without errors.> > Initially when you install the X86 Sernet packages, they do not know > what they are going to do, AD DC, NT4-style PDC, member server or a > standalone workgroup server, it can be any of these. It is up to the > sysadmin (i.e. you) to tell it what to be, you do this by setting up > smb.conf for all except the first, an AD DC. To set up an AD DC, you > need to run 'samba-tool domain provision' , this will populate, > amongst others, the private dir.I just rsynced ALL the files in /etc/samba and /var/lib/samba/*.tdb to my new system and am ready to run the classicupgrade. Figured 'this is only a test'. Go for it.
.....> >I just rsynced ALL the files in /etc/samba and /var/lib/samba/*.tdb to >my new system and am ready to run the classicupgrade. > >Figured 'this is only a test'. Go for it. > >All in /var/lib/samba ?? thats not entirly correct. below wil get you more going. before your upgrade, and with the sernet package installed run samba -b results in something like : ( this is debian !! ) Paths: BINDIR: /usr/bin SBINDIR: /usr/sbin CONFIGFILE: /etc/samba/smb.conf NCALRPCDIR: /var/run/samba/ncalrpc LOGFILEBASE: /var/log/samba LMHOSTSFILE: /etc/samba/lmhosts DATADIR: /usr/share MODULESDIR: /usr/lib/x86_64-linux-gnu/samba LOCKDIR: /var/cache/samba STATEDIR: /var/lib/samba CACHEDIR: /var/cache/samba PIDDIR: /var/run/samba PRIVATE_DIR: /var/lib/samba/private CODEPAGEDIR: /usr/share/samba/codepages SETUPDIR: /usr/share/samba/setup WINBINDD_SOCKET_DIR: /var/run/samba/winbindd WINBINDD_PRIVILEGED_SOCKET_DIR: /var/lib/samba/winbindd_privileged NTP_SIGND_SOCKET_DIR: /var/lib/samba/ntp_signd and a "locate *.tdb" /var/cache/samba/brlock.tdb /var/cache/samba/dbwrap_watchers.tdb /var/cache/samba/gencache.tdb /var/cache/samba/gencache_notrans.tdb /var/cache/samba/leases.tdb /var/cache/samba/locking.tdb /var/cache/samba/messages.tdb /var/cache/samba/netsamlogon_cache.tdb /var/cache/samba/notify.tdb /var/cache/samba/notify_index.tdb /var/cache/samba/printer_list.tdb /var/cache/samba/serverid.tdb /var/cache/samba/smbXsrv_open_global.tdb /var/cache/samba/smbXsrv_session_global.tdb /var/cache/samba/smbXsrv_tcon_global.tdb /var/cache/samba/smbXsrv_version_global.tdb /var/lib/samba/account_policy.tdb /var/lib/samba/registry.tdb /var/lib/samba/share_info.tdb /var/lib/samba/winbindd_cache.tdb /var/lib/samba/private/netlogon_creds_cli.tdb /var/lib/samba/private/randseed.tdb /var/lib/samba/private/schannel_store.tdb /var/lib/samba/private/secrets.tdb /var/lib/samba/private/dns/sam.ldb.d/metadata.tdb /var/lib/samba/private/sam.ldb.d/metadata.tdb /var/lib/samba/private/smbd.tmp/msg/names.tdb locate *.ldb /var/lib/samba/wins.ldb /var/lib/samba/private/hklm.ldb /var/lib/samba/private/idmap.ldb /var/lib/samba/private/privilege.ldb /var/lib/samba/private/sam.ldb /var/lib/samba/private/secrets.ldb /var/lib/samba/private/share.ldb /var/lib/samba/private/wins_config.ldb /var/lib/samba/private/dns/sam.ldb
On 08/28/2015 02:37 AM, L.P.H. van Belle wrote:> ..... >> I just rsynced ALL the files in /etc/samba and /var/lib/samba/*.tdb to >> my new system and am ready to run the classicupgrade. >> >> Figured 'this is only a test'. Go for it. >> >> > > All in /var/lib/samba ?? > thats not entirly correct. below wil get you more going.Oops. I meant, taking the PDC ones from my old, ClearOS server. I put them all in a directory under /root where I ran the conversion.> > before your upgrade, and with the sernet package installed run > samba -b > > results in something like : ( this is debian !! ) > Paths: > BINDIR: /usr/bin > SBINDIR: /usr/sbin > CONFIGFILE: /etc/samba/smb.conf > NCALRPCDIR: /var/run/samba/ncalrpc > LOGFILEBASE: /var/log/samba > LMHOSTSFILE: /etc/samba/lmhosts > DATADIR: /usr/share > MODULESDIR: /usr/lib/x86_64-linux-gnu/samba > LOCKDIR: /var/cache/samba > STATEDIR: /var/lib/samba > CACHEDIR: /var/cache/samba > PIDDIR: /var/run/samba > PRIVATE_DIR: /var/lib/samba/private > CODEPAGEDIR: /usr/share/samba/codepages > SETUPDIR: /usr/share/samba/setup > WINBINDD_SOCKET_DIR: /var/run/samba/winbindd > WINBINDD_PRIVILEGED_SOCKET_DIR: /var/lib/samba/winbindd_privileged > NTP_SIGND_SOCKET_DIR: /var/lib/samba/ntp_signd > > > and a "locate *.tdb" > /var/cache/samba/brlock.tdb > /var/cache/samba/dbwrap_watchers.tdb > /var/cache/samba/gencache.tdb > /var/cache/samba/gencache_notrans.tdb > /var/cache/samba/leases.tdb > /var/cache/samba/locking.tdb > /var/cache/samba/messages.tdb > /var/cache/samba/netsamlogon_cache.tdb > /var/cache/samba/notify.tdb > /var/cache/samba/notify_index.tdb > /var/cache/samba/printer_list.tdb > /var/cache/samba/serverid.tdb > /var/cache/samba/smbXsrv_open_global.tdb > /var/cache/samba/smbXsrv_session_global.tdb > /var/cache/samba/smbXsrv_tcon_global.tdb > /var/cache/samba/smbXsrv_version_global.tdb > /var/lib/samba/account_policy.tdb > /var/lib/samba/registry.tdb > /var/lib/samba/share_info.tdb > /var/lib/samba/winbindd_cache.tdb > /var/lib/samba/private/netlogon_creds_cli.tdb > /var/lib/samba/private/randseed.tdb > /var/lib/samba/private/schannel_store.tdb > /var/lib/samba/private/secrets.tdb > /var/lib/samba/private/dns/sam.ldb.d/metadata.tdb > /var/lib/samba/private/sam.ldb.d/metadata.tdb > /var/lib/samba/private/smbd.tmp/msg/names.tdb > > > locate *.ldb > /var/lib/samba/wins.ldb > /var/lib/samba/private/hklm.ldb > /var/lib/samba/private/idmap.ldb > /var/lib/samba/private/privilege.ldb > /var/lib/samba/private/sam.ldb > /var/lib/samba/private/secrets.ldb > /var/lib/samba/private/share.ldb > /var/lib/samba/private/wins_config.ldb > /var/lib/samba/private/dns/sam.ldb > > >