差分
このページの2つのバージョン間の差分を表示します。
両方とも前のリビジョン 前のリビジョン 次のリビジョン | 前のリビジョン | ||
linux:samba:samba_ad_dc_replication [2013/10/17 06:50] – [生成された設定ファイルの内容] ともやん | linux:samba:samba_ad_dc_replication [2019/05/18 02:23] (現在) – 外部編集 非ログインユーザー | ||
---|---|---|---|
行 6: | 行 6: | ||
===== パッケージインストール ===== | ===== パッケージインストール ===== | ||
< | < | ||
- | $ sudo yum install samba samba-dc samba-client tdb-tools psmisc krb5-workstation --enablerepo=mgc | + | $ sudo yum install samba samba-dc samba-client |
+ | tdb-tools psmisc krb5-workstation --enablerepo=mgc | ||
</ | </ | ||
+ | wbinfoを使えるように以下もインストールしておくとよい。 | ||
+ | < | ||
+ | $ sudo yum install samba-winbind-clients --enablerepo=mgc | ||
+ | </ | ||
===== Kerberosクライアントのデフォルト設定 ===== | ===== Kerberosクライアントのデフォルト設定 ===== | ||
行 40: | 行 45: | ||
# admin_server = kerberos.example.com | # admin_server = kerberos.example.com | ||
# } | # } | ||
- | | + | |
- | kdc = blue-dc.fireball.local <- 追記 | + | kdc = blue-dc.fireball.local |
- | | + | kdc = blue-dc1.fireball.local <- |
+ | | ||
[domain_realm] | [domain_realm] | ||
行 73: | 行 79: | ||
< | < | ||
$ sudo samba-tool domain join fireball.local DC -Uadministrator --realm=fireball.local | $ sudo samba-tool domain join fireball.local DC -Uadministrator --realm=fireball.local | ||
+ | </ | ||
+ | < | ||
Finding a writeable DC for domain ' | Finding a writeable DC for domain ' | ||
Found DC blue-dc.fireball.local | Found DC blue-dc.fireball.local | ||
行 115: | 行 123: | ||
</ | </ | ||
- | ==== 生成された設定ファイルの内容 | + | ==== 生成された設定ファイルの修正 |
< | < | ||
$ cat / | $ cat / | ||
行 126: | 行 134: | ||
netbios name = BLUE-DC2 | netbios name = BLUE-DC2 | ||
server role = active directory domain controller | server role = active directory domain controller | ||
- | printing = bsd <- 追記 | + | |
+ | idmap_ldb: | ||
+ | | ||
[netlogon] | [netlogon] | ||
行 166: | 行 176: | ||
< | < | ||
$ sudo systemctl start samba.service | $ sudo systemctl start samba.service | ||
+ | </ | ||
+ | |||
+ | ===== DC間のレプリケーション動作確認 ===== | ||
+ | < | ||
+ | $ sudo samba-tool drs showrepl | ||
+ | </ | ||
+ | < | ||
+ | Default-First-Site-Name\BLUE-DC2 | ||
+ | DSA Options: 0x00000001 | ||
+ | DSA object GUID: 7072208a-a934-4288-8df9-7f6140af0ee0 | ||
+ | DSA invocationId: | ||
+ | |||
+ | ==== INBOUND NEIGHBORS ==== | ||
+ | |||
+ | DC=DomainDnsZones, | ||
+ | Default-First-Site-Name\BLUE-DC via RPC | ||
+ | DSA object GUID: ea201fc1-7580-4e6f-b041-8ee42f472a9a | ||
+ | Last attempt @ Thu Oct 17 06:49:58 2013 JST was successful | ||
+ | 0 consecutive failure(s). | ||
+ | Last success @ Thu Oct 17 06:49:58 2013 JST | ||
+ | |||
+ | CN=Schema, | ||
+ | Default-First-Site-Name\BLUE-DC via RPC | ||
+ | DSA object GUID: ea201fc1-7580-4e6f-b041-8ee42f472a9a | ||
+ | Last attempt @ Thu Oct 17 06:49:58 2013 JST was successful | ||
+ | 0 consecutive failure(s). | ||
+ | Last success @ Thu Oct 17 06:49:58 2013 JST | ||
+ | |||
+ | DC=fireball, | ||
+ | Default-First-Site-Name\BLUE-DC via RPC | ||
+ | DSA object GUID: ea201fc1-7580-4e6f-b041-8ee42f472a9a | ||
+ | Last attempt @ Thu Oct 17 06:49:58 2013 JST was successful | ||
+ | 0 consecutive failure(s). | ||
+ | Last success @ Thu Oct 17 06:49:58 2013 JST | ||
+ | |||
+ | CN=Configuration, | ||
+ | Default-First-Site-Name\BLUE-DC via RPC | ||
+ | DSA object GUID: ea201fc1-7580-4e6f-b041-8ee42f472a9a | ||
+ | Last attempt @ Thu Oct 17 06:49:58 2013 JST was successful | ||
+ | 0 consecutive failure(s). | ||
+ | Last success @ Thu Oct 17 06:49:58 2013 JST | ||
+ | |||
+ | DC=ForestDnsZones, | ||
+ | Default-First-Site-Name\BLUE-DC via RPC | ||
+ | DSA object GUID: ea201fc1-7580-4e6f-b041-8ee42f472a9a | ||
+ | Last attempt @ Thu Oct 17 06:49:58 2013 JST was successful | ||
+ | 0 consecutive failure(s). | ||
+ | Last success @ Thu Oct 17 06:49:58 2013 JST | ||
+ | |||
+ | ==== OUTBOUND NEIGHBORS ==== | ||
+ | |||
+ | ==== KCC CONNECTION OBJECTS ==== | ||
+ | |||
+ | Connection -- | ||
+ | Connection name: 4bd1dee9-545a-4ba1-ba73-0926e3fb22e7 | ||
+ | Enabled | ||
+ | Server DNS name : blue-dc.fireball.local | ||
+ | Server DN name : CN=NTDS Settings, | ||
+ | CN=Default-First-Site-Name, | ||
+ | TransportType: | ||
+ | options: 0x00000001 | ||
+ | Warning: No NC replicated for Connection! | ||
</ | </ | ||