[Samba] How can I setup a Domain Controller and File Server on the same hardware

[Rowland Penny]

On Sat, 5 Nov 2016 14:19:44 -0400
John te Bokkel <tanj.tanj at gmail.com> wrote:

> On 5 November 2016 at 12:50, Rowland Penny via samba
> <samba at lists.samba.org> wrote:
> > On Sat, 5 Nov 2016 12:33:15 -0400
> > John te Bokkel via samba <samba at lists.samba.org> wrote:
> >
> >> I understand from the wiki that I shouldn't have the domain
> >> controller also be the file server.
> >>
> >> Is it possible to to setup the domain controller in a chroot and
> >> have the file server run under regular root?
> >>
> >> Would it be better to setup a VM for the domain controller and have
> >> file server run on the main OS or vice-versa?
> >>
> >> Regards,
> >> John
> >
> > Try reading the wiki again, especially this:
> >
> > https://wiki.samba.org/index.php/Setting_up_Samba_as_an_Active_Directory_Domain_Controller#Using_the_Domain_Controller_as_a_File_Server
> >
> > Rowland
> >
> > --
> > To unsubscribe from this list go to the following URL and read the
> > instructions:  https://lists.samba.org/mailman/options/samba
> 
> Rowland,
> 
> I'm understanding then that it should be possible to run both the
> domain controller and file sharing off the same samba instance
> provided I setup libnss_winbind before setting up shares.
> 
> I have read through some of the linked wiki articles.
> https://wiki.samba.org/index.php/Idmap_config_ad there is a comment in
> the smb.conf examples that says not to use these lines on a DC. Is
> that referring to the "default (*)" lines or to all of the following
> lines.
> 
> Regards,
> John

It references all the lines, they do absolutely nothing if added to a
DCs smb.conf.

I have moved the line to the top of the smb.conf fragments, I probably
should have put them there in the first place.

So to answer your original question, yes you can use a DC as a
fileserver, Samba just doesn't recommended doing this and you need to
set it up slightly differently from a domain member.

Rowland