[Samba] Connecting samba + winbind with 2 controllers windows domains.
Esteban Torres Rodríguez
mortenol.torres at gmail.com
Wed May 4 05:03:58 MDT 2011
I have configured Samba + Winbind + AD. Currently my windows domain consists
of 2 servers and all the samba settings I have it on one of them.
How I can do so if one server fails windows, work with other Windows server?
I have only to add to server2 to the password server option in my smb.conf?
Use: samba-winbind-3.0.33 + 3.0.33
My krb5.conf:
[Logging]
default = FILE: / var/log/krb5libs.log
kdc = FILE: / var/log/krb5kdc.log
admin_server = FILE: / var / log / kadmind.log
[Libdefaults]
default_realm = DOMAIN.COM
clockskew = 300
dns_lookup_realm = false
dns_lookup_kdc = false
ticket_lifetime = 24h
forward = yes
[Realms]
DOMAIN.COM = {
kdc = server1.domain.com
admin_server = server1.domain.com
default_domain = domain.com
}
domain.com = {
kdc = server1.domain.com
admin_server = server1.domain.com
default_domain = domain.com
}
domain = {
kdc = server1.domain.com
admin_server = server1.domain.com
default_domain = domain
}
[Domain_realm]
. Domain = domain
. Domain.com = DOMAIN.COM
[Kdc]
profile = / var/kerberos/krb5kdc/kdc.conf
[Appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forward = true
krb4_convert = false
}
My smb.conf
[Global]
workgroup = DOMAIN
realm = DOMAIN.COM
preferred master = no
server string = Server
security = ADS
encrypt passwords = yes
password server = server1.domain.com
domain master = no
encrypt passwords = yes
SO_KEEPALIVE TCP_NODELAY socket options = SO_RCVBUF = 8192 SO_SNDBUF
IPTOS_LOWDELAY = 8192
dns proxy = yes
log level = 3
syslog = 0
log file = / var / log / samba /% m
max log size = 50
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
winbind nested groups = Yes
winbind cache time = 15
idmap uid = 600-20000
idmap gid = 600-20000
idmap cache time = 30
read raw = yes
write raw = yes
oplocks = yes
max xmit = 65535
getwd cache = yes
More information about the samba
mailing list