[Samba] Don't use .local

Rowland Penny rowlandpenny at googlemail.com
Sun Jan 4 09:55:17 MST 2015


On 04/01/15 16:45, Bob of Donelson Trophy wrote:
>   
>
> I expected to re-provision the domain. (That is easy, now.)
>
> Okay, so now the question becomes after the re-provision of the domain
> on the DC what needs to be changed on the MEMBER server. Obviously, the
> hostname needs to be corrected and check any needed changes within the
> smb.conf file.
>
> Thoughts?

Provided you are only changing .local to something else.

Change .local to whatever you are now using, wherever it occurs 
(resolv.conf, hosts, smb.conf, krb5.conf etc)
stop samba and winbind (if using), run 'net cache flush', reboot and you 
should be ok

Rowland

> ---
>
> -------------------------
>
> Bob Wooden of Donelson Trophy
>
> 615.885.2846 (main)
> www.donelsontrophy.com [2]
>
> "Everyone deserves an award!!"
>
> On 2015-01-04 10:39, Rowland Penny wrote:
>
>> On 04/01/15 16:11, Donelson Trophy wrote:
>>
>>> During the Christmas holiday I created a AD DC & a MEMBER server (both on Debian 7.7.0) with these scripts (https://secure.bazuin.nl/scripts/ [1]) and thank you, L.P.H. van Belle. However, I have created them with a *.local TLD (that now I need to change.) I will need to adjust my hostname files, need to re-configure the kerberos install and of course Bind9. The hostname files I know how to change. No problem there. The kerberos install, I think can be re-configured with 'dpkg-reconfigure'.
>> Don't bother, use the krb5.conf that the *NEW* DC provision creates, copy it to /etc/ on both machines.
>>
>>> As I have no experience (until now) with Bind9, this is my biggest concern! What do I change?
>> Absolutely *nothing*
>>
>> It should pickup the new files that the *new* provision creates.
>>
>>> What other needed changes have I overlooked? OR Do I (build (re-build) two servers) all over again?
>> Well, I think that you need to re-provision the domain.
>>
>> Rowland
>> At this point, I am at the planning "what needs to be done" stage. Any suggestions would be greatly appreciated. --- ------------------------- Bob Wooden of Donelson Trophy 615.885.2846 (main) www.donelsontrophy.com [2] [2 [2]] "Everyone deserves an award!!" On 2015-01-04 07:07, Rowland Penny wrote: On 04/01/15 12:16, Stefan Kania wrote: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello everyone, I know that many people know not to use .local, but in the last weeks we had several People having problems using .local. So to all peopel starting implementing Samba 4 AD, read this: http://miketelahun.wordpress.com/2012/09/16/stop-using-local-as-the-top-level-domain-for-your-lan/ [3] [1] So stop using .local as TLD. Maybe there should be a BIIIIIG not inside the wiki? I updated the wiki yesterday in three places saying not to use .local, I believe that Marc has also updated the DNS page as well. Problem is, most people seem to ignore the wiki. Rowland Stefan -----BEGIN PGP
> SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.16 (Darwin) iEYEARECAAYFAlSpLycACgkQ2JOGcNAHDTb0jACfX4Y2zDQuSfevMUvkgWRYcpdw hY8AoLxNJzOUPa0E3+BEo/zwJ88xk27J =e33p -----END PGP SIGNATURE-----
>   Links: ------ [1]
> http://miketelahun.wordpress.com/2012/09/16/stop-using-local-as-the-top-level-domain-for-your-lan/
> [3] [2] http://www.donelsontrophy.com [2]
>
> Links:
> ------
> [1] https://secure.bazuin.nl/scripts/
> [2] http://www.donelsontrophy.com
> [3]
> http://miketelahun.wordpress.com/2012/09/16/stop-using-local-as-the-top-level-domain-for-your-lan/




More information about the samba mailing list