General :: Configuring Redhat As Domain Controller And Adding Windows Workstations As Clients
Feb 28, 2011
i need to configure Redhat Linux as Domain Controller in my organisation, whee all of my clients PC's will be Windows XP or Windows 7 ( where i can login through Domain users ). what exactly i need to configure in Redhat Linux, i heard Configuring Samba as PDC is quite enough ? is that right ? then what is Open LDAP ? should i need to Configure Open LDAP also ?
Im currently using an english book to setup my samba server, and im having problems understanding it.
I dont want to use root to join clients to the domain; i prefer creating a plain user.
Ok, so, the steps i follow are:
net groupmap add unixgroup=srvadmins ntgroup="Server Admins" net groupmap add ntgroup="Domain Admins" unixgroup=dmnadmins rid=512 type=d net rpc rights grant 'ORAServer Admins' seMachineAccountPrivilege
This way, i have a group called srvadmins with permissions to join clients, a group called dmnadmins with permissions to manage users and other permissions, and root.
Now, users: "root", "dmnadmin"(from dmnadmins group) and "srvadmin" (from srvadmins group) can add machines to domain. Root because is root, srvadmin because i granted permissions, and dmnadmin because is admin
So i wonder, why srvadmins group is needed to be granted privileges?
I tryed to lower dmnadmins privileges by revoking semachineaccountprivilege privilege, but didnt worked
net rpc rights revoke 'ORADomain Admins' seMachineAccountPrivilege
looks like its privileges comes from another group and it user managed to add a machine to the domain correctly.
Ok, so, is this really usefull? why do i need 3 kind of users to be able to join to the domain?
I'm working for a smallish non-profit that has gone through some recent growing pains. We have two sites that are currently without a domain controller, and no money for MS licenses, so I was thinking of trying to add a couple of additional Linux machines (we already run Linux for web services internally, and I've set up a test case previously to see if I could get a server to join the domain, which was a success) and was trying to find out if I can get them to act as Domain Controllers without replacing the domain. The main issue that I'm having at those locations is drive mappings are not happening correctly against our DFS file servers. The one other location that had this issue had it go away when we added a local DC. The domain is a Server 2008 domain.
We've been running samba on linux for a while and everything was fine. All of a sudden when you add new clients to the domain you get the error message :Logon Failure:unknown user name or bad password. This to me seems like a windows error message and not a samba error. When you remove an existing machine (ie on domain) and then try to rejoin it to the domain you fail.
My Windows 2003 domain has three domain controllers. All of them are configured as global catalog servers, but my krb.conf and krb5.conf only contain a reference to one of them. What if the DC referenced is down? Should my files reference the other DCs? The contents of my files follow...
First of all I am new user on fedora forum and I love Linux (special Redhat flavours) and want to replace windows into Linux Everywhere. I am having some issue in configuring PDC on Fedora,I want to replace my company Windows Domain controller and file server into fedora file and PDC, I tried from web and through 389-directory server but didn't succeed even once, how to configure PDC with Samba 4 + 389-directory Server, I have heard samba 4 is having awesome support and its better then windows DC, configuring Complete PDC. (Whatever need to configure PDC i.e. DNS, SAMBA 4, SWAT, WEBMIN, 389-Directory Server, Windows sync,).
is possible configure a samba server to a Backup Domain Controller in a windows 2003 Domain ? I have a Primary Domain controller Windows server 2003 , can integrate my network with a linux samba Backup Domain Controller server ?
Im an IT manager for a small company with a small ammount of users. We already use linux for our data server and I would like to implement a domain controller. All of our user machines are WIndows XP pro.
Ive been reading up on using OpenLDAP as an alternative to active directory.
What I want is just a simple active directory like server, with a GUI if possible.
What do I need to look at and how would I go about setting this up? Im fairly proficient with Ubuntu already, I just need to be pointed in the right direction.
Is it even possible to have my windows users be able to log in to their machines using an ubuntu domain controller?
I feel ashamed for even asking this, since it seems like there's about 3 samba questions here every day. However after an hour of searching, I keep finding strange variants that aren't what I need.
My Goal: Create a single file share on an Ubuntu Server - share it via samba to Windows clients that are on a domain with active directory. It sure would be nice if AD authentication would work - so users don't have to type in a linux user/passsword each time they want to access the share.
In my adventures, I've found the following items (which may overlap)
1. Joining the server to a Windows Domain
2. Turning the server into a Windows Domain Controller
3. Authentication with LDAP (still not quite sure how/what this would do)
4. Stuff with Kerberos
5. Lots of people bickering about Samba 3/4 & how it's impossible to make Samba a PDC.
I'm not sure if I need to make the ubuntu server a domain controller or not...all I want to do is create a file share and share it on the domain...I don't need to make the ubuntu server a domain controller for that, right? Maybe just a member? Maybe nothing at all?
I guess if I want to authenticate stuff correctly (or forward authentication requests? Not sure), I probably need to join the ubuntu server to the domain...I think.
But let's say I do join it to the domain...then how to I create a file share that is authenticated via active directory rather than a local ubuntu server account? I see a dozen guides on joining the server to the domain, but nobody ever mentions sharing the folder over the domain.
The lines are also blurred between joining Ubuntu to the domain and making it a domain controller. What should I keep an eye out to avoid in these tutorials?
I get lost between the Kerberos/LDAP/Samba/WinBind etc...and I have a feeling I don't need all of these for something this simple.
I have an internal domain (dev.lan) for which my Ubuntu server is authoritative. We have a number of subdomains under that domain (test.dev.lan, svn.dev.lan, etc.). The server also acts as the primary DNS server for my office. It was originally set up under Ubuntu 8 and worked great.
However, ever since we upgraded to Ubuntu 10, our Windows clients periodically lose the ability to resolve domains on the dev.lan domain. Internal IP addresses can still be pinged from the Windows machines so it does not appear to be a network-connectivity issue. External domain names continue to resolve without any problems. The only workaround is to restart networking on the Windows clients. It's frustrating because it happens several times a day.
I'm currently trying to configure Linux heartbeat on my two Linux servers(where SMPP service is running) my two machines are in two different location with different notworks (primary is in 192.168.x.x and secondary is in 10.48.x.x network)
I want to know whether is it possible to configure heartbeat between two such different networks (what i found by surfing internet is the way of configuring in same network) if possible, can i configure to listen to my primary server IP instead of having a secondary IP in primary server (since my SMPP service is running with my primary server's IP)
Problem with megaraid controller and Dell2850, all that I can see on this screenshot: [URL]. All drives successfully passed verifying from LSI controllers (Ctrl+A at startup), also I tried to boot from rescue live cd and mount all the mirrored drives and check it by fsck - ok.
I have up to 300 PC in Ministry of Higher Education, I want to use UBUNUT server and UBUNUT Desktop for my network, But I am really not so familiar with UBUNUT Server just a little bit, finally here is my questions: Can I do these roles 1- Domain Controller. 2- User Accounts. 3- File Sharing. 4- Web Server. 5- Print Server. 6- Internet Sharing. 7- Web Chaching. 8- web proxy. 9- Firewall.
Can Debian act as a Windows Domain Controller? I'm just curious because my boss recently tossed out some old servers and I grabbed them. They're good machines but I can't afford to pay $1000 for Server 2003 R2 just to setup a domain at my place and run Endpoint Protection and such. I've never used a domain setup in Linux before so I thought I'd ask and possibly try to, if Debian/Linux is capable of such a thing.
it always frozen my ssh login window when the DC crashes. when the DC crashes, the putty won't give me the password prompt and will go inactive directly after a while no matter what username(local or domain users) I give
is it possible to avoid to check domain users before it gives me the password prompt? or, we can make it to check if the user is a local user first?
i have configured samba as file server in fedora 11,it works fine for both windows and linux machines .but i want to configure ldap and samba as domain controller. Googled a lot on internet every thing is confusing me .
I have setup Ubuntu servers as LAMP machines but that's pretty much it.
I need to work on an existing CentOS server that I will see for the first time tomorrow. I am told that, as of right now, it is "just serving the internet." The goal is to set it up to be a primary domain controller by which I mean:
1) A user should be able to login to the server from any of the workstations and then see their server stored documents
2) The clients will be a mixed bag of Linux, Windows and Mac machines
I could use a push in the right direction as to what I need to do to get this all setup. I know how to setup users and home folders (I use webmin typically and I understand that there is a version for CentOS) but clearly there is more that I need to do. I am really curious as to how I would map the necessary drives on the client machines upon login and have the users have automatic access to their data regardless of the client machine they log in to.
I started using Linux when Karmic came out, so I'm a bit of a decorated newb. Anyway, I upgraded to Lucid and noticed something that I can't do anymore. I have a dual-screen setup with 2 workstations. I can drag windows from one screen to the next, but when I try to drag it over to another workstation, nothing happens anymore. The only way I can get it to work now is if I hold down the cursor on the desired window and hit Ctrl + Alt + L/R. How do I report this as a bug if it is indeed one? All I can find is a link to join a bug fixing team.