[Samba] Choosing the right domain
Rowland penny
rpenny at samba.org
Tue Jun 30 14:14:14 UTC 2020
On 30/06/2020 14:41, Maik Holtkamp via samba wrote:
> Hi,
>
> I am about to spend one week of my holidays with transfering our (about
> 20 clients) NT4 domain to a AD DC one.
>
> We are running a samba NT4 PDC on debian buster which is offering dns
> (bind9) and dhcp (isc-dhcpd), too.
>
> I have an older server where I can play with an AD DC setup.
>
> If I see I won't make it in a week, I would like to be able to return as
> smooth as possible to the present state.
>
> Our current internal domain is:
>
> intra.our.tld
>
> Frankly speaking I am already lost, if I should choose the right AD DC
> domain:
>
> [ ] addc.intra.our.tld
>
> and use the exsisting bind as a forwarder for the new bind on the AD DC
> or better use:
>
> [ ] addc.our.tld
>
> ... and one second question (sorry):
>
> What about the dhpcd?
>
> At present we use fixed MAC:IP:Name matches and the DHCP writes
> corresponding DNS records into bind. I am afraid we can't use such setup
> anymore, too, can we?
Is 'intra.our.tld' a registered domain ?
If you do have a registered domain, I would suggest something like
'anything_you_like.your.registered.domain.tld', do not use your
registered domain, use a subdomain of your registered domain.
Depending on how much data you have, it might just be easier and better
to start anew, that way you can lose all the bad practices of the past
(using the RID for Unix ID's etc)
If you must classicupgrade your old domain, do your practising in a
sandbox and read this:
https://wiki.samba.org/index.php/Migrating_a_Samba_NT4_Domain_to_Samba_AD_(Classic_Upgrade)
You can use Bind9 and you just need to use forwarders outside your AD
domain. You can also use DHCP as well, this might help you:
https://wiki.samba.org/index.php/Configure_DHCP_to_update_DNS_records_with_BIND9
Rowland
More information about the samba
mailing list