[Samba] How do I join an Centos8 workstation to an NT4 domain?

Nick nick at howitts.co.uk
Wed Feb 24 18:07:01 UTC 2021 


On 24/02/2021 17:09, Nick Howitt via samba wrote:
> 
> 
> 
> On 24/02/2021 13:12, Rowland penny via samba wrote:
> 
> One pint of blood donated later ....
> 
>>
>> On 24/02/2021 12:11, Nick Howitt via samba wrote:
>>>
>>>>
>>>> Not really a Centos user, but I think you need to run 'authselect 
>>>> select winbind with-mkhomedir'
>>> With your prompting, I found another reference. It needed a --force 
>>> as well.
>>>
>>> So now PAM passes when I login at the desktop but it just throws me 
>>> back to the desktop and no /home is set up for any user. If I 
>>> manually clone my old local user's /home to the domain user and 
>>> change the ownerships it does not help so I must be missing something 
>>> here. Setting "template homedir = /home/%U" doesn't seem to help 
>>> (and, I'd guess, would not give it the full desktop template). 
>>> Getting closer.
>>
>>
>> You do not have a 'template homedir' line in your smb.conf, so yo will 
>> be using the default '/home/%D/%U' , so does '/home/HOME' exist ?
>  >
> 
> For the moment I have set "template homedir = /home/%U". I have a 
> suspicion why the documentation says "template homedir = /home/%D/%U", 
> so data loss is avoided if an account already exists, but it is not a 
> problem on my test set up so I've left it simple. Either way /home/HOME 
> exists
> 
>> Also do you have the oddjob-mkhomedir package installed ?
>  >
> 
> yes
> 
>>>
>>> "net leave" and "net rpc leave" both just give me the command help.
>>
>>
>> It has been so long since I used an NT4-style domain, that I forgot 
>> there is no 'leave' like there is in AD.
>>
> 
> NP. I'll do a full test of the process by rolling back the VM anyway.
> 
> Nick
> 
Got it. oddjob-mkhomedir has a service which needs to be enabled. Also I 
ran:

authselect select winbind with-mkhomedir

Stolen and adapted from 
https://computingforgeeks.com/join-centos-rhel-system-to-active-directory-domain/

I'll roll back the VM tomorrow and re-test end-to-end.

-- 
This email has been checked for viruses by Avast antivirus software.
https://www.avast.com/antivirus

More information about the samba mailing list