[Samba] How to join a Linux machine to a Samba4 domain

[Rowland Penny]

On 30/01/14 10:26, Sven Schwedas wrote:
> On 2014-01-30 11:24, Rowland Penny wrote:
>> On 30/01/14 10:12, Sven Schwedas wrote:
>>> Hi,
>>>
>>> On 2014-01-30 11:00, Lea Massiot wrote:
>>>> Hello,
>>>>
>>>> My question is about how to join a "Linux" machine to a "Samba4 AD DC"
>>>> domain.
>>>>
>>>> Given that I have a "Samba4 AD DC" running on a machine (A),
>>>> given that I have a another machine (B) running "Linux Debian Wheezy",
>>>> can you tell me:
>>>>
>>>> 1) How I can join (B) to the domain?
>>>>
>>>> Do I have to install specific packages on (B)?
>>> Samba4. Preferably not the bugged and incomplete packages shipped with
>>> Wheezy. Use the packages provided by sernet, or wheezy-backports.
>>>
>>> (Note that Samba4 in wheezy-backports breaks sssd, you'll only be able
>>> to use winbind or pam_ldap. Refer to the recent and still ongoing
>>> elaborate shitstorms on the mailing list to pros/cons of sssd vs.
>>> winbindd.)
>> Unless the OP has jumped ship, they are using self compiled 4.1.4 on the DC
> Ah, okay.
>
>> I would suggest using Jessie instead of Wheezy, it comes with 4.1.4 that
>> works.
>>
>>>> Does it look like something like this: "net ads join -U Administrator"?
>> Yes, this will work
>>
>>> Should be "samba-tool domain join" in Samba 4.1+. Refer to its help
>>> texts and manpages for details, it's the only documentation currently
>>> existing.
>>>
>> Only if you want to join as a Member or DC
> Hm, is that distinction documented somewhere? I wasn't aware of that.
Well, 'samba-tool domain join --help' and sorry I got it wrong its 
Backup DC, not just DC

Rowland

>
>>>> 2) How can I create a shared directory on (B) so that other clients both
>>>> Windows and Linux can access it in read and write mode?
>>> Not visibly different from samba3. Set it up in your smb.conf, and
>>> ensure your auth backends (winbind or sssd) are configured properly.
>>>
>> Totally agree
>>
>> Rowland
>>