Changes

From SME Server
Jump to navigationJump to search

Samba-dc (view source)

Revision as of 07:38, 11 December 2024

142 bytes added ,  11 December
no edit summary
Line 27: Line 27:  
It will replace upstream samba packages with AD enabled ones from [https://sig-fasttrack.rocky.page SIG/FastTrack] repo. More details found [https://git.resf.org/sig_fasttrack/meta/issues/2 here].
 
It will replace upstream samba packages with AD enabled ones from [https://sig-fasttrack.rocky.page SIG/FastTrack] repo. More details found [https://git.resf.org/sig_fasttrack/meta/issues/2 here].
   −
A secondary samba.service will use separate samba data directories, set up via a distinct samba configuration.
+
A secondary samba service will use separate samba data directories, set up via a distinct samba configuration.
    
This ensures that samba-dc instance won't interfere with normal filesharing samba services provided by SME core.
 
This ensures that samba-dc instance won't interfere with normal filesharing samba services provided by SME core.
Line 35: Line 35:  
Users logged in to domain joined Windows PCs will have access to SME's samba shares via their namesake usernames and matching passwords.
 
Users logged in to domain joined Windows PCs will have access to SME's samba shares via their namesake usernames and matching passwords.
 
https://wiki.koozali.org/Client_Authentication:Windows#Login_to_shared_resources
 
https://wiki.koozali.org/Client_Authentication:Windows#Login_to_shared_resources
 +
 +
In an Active Directory Kerberos requires an accurate time synchronization so make sure to set up NTP for all client computers.
 
===Installation===
 
===Installation===
 
<tabs container><tab name="For SME 11">
 
<tabs container><tab name="For SME 11">
Line 81: Line 83:  
Confirm that the samba virtual interface is working
 
Confirm that the samba virtual interface is working
 
  ifconfig
 
  ifconfig
It can be disabled anytime if domain is not operational.
+
It can be disabled anytime ONLY if domain is not operational.
 
  /sbin/e-smith/db configuration delprop samba SambaIP
 
  /sbin/e-smith/db configuration delprop samba SambaIP
 
  signal-event console-save
 
  signal-event console-save
Line 119: Line 121:  
Before first login all users and admin must change their passwords from https://SME-IP/user-password portal.
 
Before first login all users and admin must change their passwords from https://SME-IP/user-password portal.
   −
Disabling samba service is not supported as user accounts and password will get out of sync.
+
WARNING: disabling samba service is not supported as user accounts and password will get out of sync.
    
Restoring missing user accounts can be done via (additional passwords might need to be reset)
 
Restoring missing user accounts can be done via (additional passwords might need to be reset)
Bunkobugsy
69

edits

Retrieved from "https://wiki.koozali.org/Special:MobileDiff/43157"

Navigation menu