SMB AD
發表於 : 2012年 10月 17日, 11:28yum install postfix dovecot samba samba-winbind krb5-server krb5-server-ldap krb5-workstation pam pam_krb5 nss
vi /etc/resolv.conf
vi /etc/krb5.conf
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
default_realm = WES.COM.TW
dns_lookup_realm = true
dns_lookup_kdc = true
ticket_lifetime = 24h
renew_lifetime = 7d
forwardable = true
[realms]
WES.COM.TW = {
kdc = dc.wes.com.tw
admin_server = dc.wes.com.tw
default_domain = wes.com.tw
}
[domain_realm]
.wes.com.tw = WES.COM.TW
wes.com.tw = WES.COM.TW
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
vi /etc/nsswitch.conf
passwd: files winbind
shadow: files
group: files winbind
vi /etc/samba/smb.conf
[global]
netbios name = centos6
netbios aliases = 網路硬碟
server string = SAMBA NAS
admin users = root
default = public
deadtime = 20
workgroup = WES
os level = 20
hosts deny = ALL
hosts allow = 192.168.0.0/255.255.0.0 172.16.0.0/255.255.0.0 10.1.0.0/255.255.0.0
encrypt passwords = yes
security = domain
wins support = true
password server = dc.wes.com.tw
realm = WES.COM.TW
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
winbind separator = /
template homedir = /home/%U
template shell = /sbin/nologin
winbind use default domain = true
winbind offline logon = false
client use spnego = no
server signing = auto
log file = /var/log/samba/%m.log
max log size = 50
local master = no
username map = /etc/samba/smbusers
preferred master = no
winbind enum users = yes
winbind enum groups = yes
service smb restart
service winbind restart
chkconfig winbind on
ntpdate -b 192.168.1.14
net ads join -U administrator@WES.COM.TW
wbinfo -t
wbinfo -u
vi /etc/resolv.conf
vi /etc/krb5.conf
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
default_realm = WES.COM.TW
dns_lookup_realm = true
dns_lookup_kdc = true
ticket_lifetime = 24h
renew_lifetime = 7d
forwardable = true
[realms]
WES.COM.TW = {
kdc = dc.wes.com.tw
admin_server = dc.wes.com.tw
default_domain = wes.com.tw
}
[domain_realm]
.wes.com.tw = WES.COM.TW
wes.com.tw = WES.COM.TW
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
vi /etc/nsswitch.conf
passwd: files winbind
shadow: files
group: files winbind
vi /etc/samba/smb.conf
[global]
netbios name = centos6
netbios aliases = 網路硬碟
server string = SAMBA NAS
admin users = root
default = public
deadtime = 20
workgroup = WES
os level = 20
hosts deny = ALL
hosts allow = 192.168.0.0/255.255.0.0 172.16.0.0/255.255.0.0 10.1.0.0/255.255.0.0
encrypt passwords = yes
security = domain
wins support = true
password server = dc.wes.com.tw
realm = WES.COM.TW
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
winbind separator = /
template homedir = /home/%U
template shell = /sbin/nologin
winbind use default domain = true
winbind offline logon = false
client use spnego = no
server signing = auto
log file = /var/log/samba/%m.log
max log size = 50
local master = no
username map = /etc/samba/smbusers
preferred master = no
winbind enum users = yes
winbind enum groups = yes
service smb restart
service winbind restart
chkconfig winbind on
ntpdate -b 192.168.1.14
net ads join -U administrator@WES.COM.TW
wbinfo -t
wbinfo -u