|
|
142.
|
|
|
sudo touch /srv/samba/netlogon/logon.cmd
|
|
|
|
|
(no translation yet)
|
|
|
|
Located in
docs/sharing/C/sharing.xml:922(command)
|
|
|
143.
|
|
|
Any normal Windows logon script commands can be entered in <filename>logon.cmd</filename> to customize the client's environment.
|
|
|
|
|
(no translation yet)
|
|
|
|
Located in
../docs/sharing/C/sharing.xml:872(para)
|
|
|
144.
|
|
|
With <emphasis>root</emphasis> being disabled by default, in order to join a workstation to the domain, a system group must be mapped to the Windows <emphasis>Domain Admins</emphasis> group. Using the <application>net</application> utility, from a terminal enter:
|
|
|
|
|
(no translation yet)
|
|
|
|
Located in
../docs/sharing/C/sharing.xml:880(para)
|
|
|
145.
|
|
|
sudo net groupmap add ntgroup="Domain Admins" unixgroup=sysadmin rid=512 type=d
|
|
|
|
|
(no translation yet)
|
|
|
|
Located in
docs/sharing/C/sharing.xml:942(command)
|
|
|
146.
|
|
|
Change <emphasis role="italic">sysadmin</emphasis> to the preferred group. The user used to join the domain needs to be a member of the <emphasis>sysadmin</emphasis> group, as well as a member of the system <emphasis>admin</emphasis> group. The <emphasis>admin</emphasis> group allows <application>sudo</application> use.
|
|
|
|
|
(no translation yet)
|
|
|
|
Located in
docs/sharing/C/sharing.xml:947(para)
|
|
|
147.
|
|
|
Finally, restart Samba to enable the new domain controller:
|
|
|
|
|
(no translation yet)
|
|
|
|
Located in
../docs/sharing/C/sharing.xml:905(para)
|
|
|
148.
|
|
|
It is now possible to join Windows clients to the Domain in the same manner as joining them to an NT4 domain running on a Windows server.
|
|
|
|
|
(no translation yet)
|
|
|
|
Located in
../docs/sharing/C/sharing.xml:916(para)
|
|
|
149.
|
|
|
Backup Domain Controller
|
|
|
|
|
(no translation yet)
|
|
|
|
Located in
docs/sharing/C/sharing.xml:983(title)
|
|
|
150.
|
|
|
With a Primary Domain Controller (PDC) on the network, it is best to have a Backup Domain Controller (BDC) as well. This will allow clients to authenticate in case the PDC becomes unavailable.
|
|
|
|
|
(no translation yet)
|
|
|
|
Located in
../docs/sharing/C/sharing.xml:928(para)
|
|
|
151.
|
|
|
When configuring Samba as a BDC, there must be a way to sync account information with the PDC. There are multiple ways of accomplishing this, such as <application>scp</application>, <application>rsync</application>, or by using <application>LDAP</application> as the <emphasis>passdb backend</emphasis>.
|
|
|
|
|
(no translation yet)
|
|
|
|
Located in
../docs/sharing/C/sharing.xml:934(para)
|
