[Samba] How do I join an Centos8 workstation to an NT4 domain?

Nick Howitt nick at howitts.co.uk
Thu Feb 25 10:14:32 UTC 2021 


On 24/02/2021 18:07, Nick via samba wrote:
> 
> 
> 
> On 24/02/2021 17:09, Nick Howitt via samba wrote:
>>
>>
>>
>> On 24/02/2021 13:12, Rowland penny via samba wrote:
>>
>> One pint of blood donated later ....
>>
>>>
>>> On 24/02/2021 12:11, Nick Howitt via samba wrote:
>>>>
>>>>>
>>>>> Not really a Centos user, but I think you need to run 'authselect 
>>>>> select winbind with-mkhomedir'
>>>> With your prompting, I found another reference. It needed a --force 
>>>> as well.
>>>>
>>>> So now PAM passes when I login at the desktop but it just throws me 
>>>> back to the desktop and no /home is set up for any user. If I 
>>>> manually clone my old local user's /home to the domain user and 
>>>> change the ownerships it does not help so I must be missing 
>>>> something here. Setting "template homedir = /home/%U" doesn't seem 
>>>> to help (and, I'd guess, would not give it the full desktop 
>>>> template). Getting closer.
>>>
>>>
>>> You do not have a 'template homedir' line in your smb.conf, so yo 
>>> will be using the default '/home/%D/%U' , so does '/home/HOME' exist ?
>>  >
>>
>> For the moment I have set "template homedir = /home/%U". I have a 
>> suspicion why the documentation says "template homedir = /home/%D/%U", 
>> so data loss is avoided if an account already exists, but it is not a 
>> problem on my test set up so I've left it simple. Either way 
>> /home/HOME exists
>>
>>> Also do you have the oddjob-mkhomedir package installed ?
>>  >
>>
>> yes
>>
>>>>
>>>> "net leave" and "net rpc leave" both just give me the command help.
>>>
>>>
>>> It has been so long since I used an NT4-style domain, that I forgot 
>>> there is no 'leave' like there is in AD.
>>>
>>
>> NP. I'll do a full test of the process by rolling back the VM anyway.
>>
>> Nick
>>
> Got it. oddjob-mkhomedir has a service which needs to be enabled. Also I 
> ran:
> 
> authselect select winbind with-mkhomedir
> 
> Stolen and adapted from 
> https://computingforgeeks.com/join-centos-rhel-system-to-active-directory-domain/ 
> 
> 
> I'll roll back the VM tomorrow and re-test end-to-end.
> 
I have tidied this up cutting out the irrelevant bits and run it through 
my VM again. I have written up a mini how-to at 
https://documentation.clearos.com/content:en_us:kb_howtos_add_centos8_workstation_to_the_samba_domain.

The one thing I cannot get to work is the join without either specifying 
the -S or -I parameter. Setting "wins server" makes no difference.

Thanks for all your help.

Nick

More information about the samba mailing list