Samba 4 Domain Controller - Part 4 Adding Windows 2008R2 as Additional Domain controller for Samba4 Active directory

Install Windows 2008R2.

Change the computer name as you desired.

Then run "dcpromo"

select "Use advanced mode installation"

Click on next in operating system compatability screen..

Select "Existing forest" and select "Add a domain controller to an existing domain"

Type the domain name and set the credentials ..

click on next in select domain screen..

Click on next in select a site screen..

Select  DNS server and Global Catalog if not selected and click on next..

Click on Yes in Active directory domain services installation wizard

Click on next in Install from a media screen..

Click  on next in source domain controller.

Click on next in Location for database .... screen.

Click on next in summery screen.

Active directory domain services installation starting..

Click on finish to complete the installation.

Restart the server..

Login in to the server by using administrator username and password..

Now Logon to Linux server and check for dynamic DNS update...

It is showing that "win2k8" does not exist in DNS Server..

after some time see the result.

Now check the replication status in Linux.. showing successfull

Now check the replication status in Windows 2008R2 Server..

Create a user in linux server using the command..

                        "/usr/local/samba/bin/samba-tool newuser kishore kishore@123"

Join a XP machine to Domain and login into the XP machine using the above created user..

Applying Group policy..

Create a group policy (prohibit access to the control panel) in windows 2008R2 server..

Now logon to XP client and type control in run

will show error "Restrictions"..

That's it...

Samba 4 Domain Controller - Part 3 DNS Server Configuration

After successful installation of samba 4 alpha 13/14 follow these steps to configure DNS (bind) in linux..

open terminal and login as root (type su, press enter and then giv root password)

check the bind  version by typing this command.

                   "/usr/sbin/named -V"

result should be above 9.7.2, if not please update bind by issuing the command "yum update bind"

Edit the bind config file (named.conf) using this command.

Default named.conf file will opened..

Edit the named.conf file like this..

Edit the "/etc/sysconfig/named" file..

 

change the DNS related files permissions and owners groups in samba folder (/usr/local/samba/private)

from:

to:

copy "/usr/local/samba/private/krb5.conf" to "/etc/"

start the DNS server by using this command "/etc/init.d/named start"

check the DNS server working with the follwing commands..

             host -t SRV _ldap._tcp.admingeeks.blogspot.com

             host -t SRV _kerberos._udp.admingeeks.blogspot.com

             host -t A dc.admingeeks.blogspot.com

check kerberos using the following command

            kinit administrator

          klist -e

Next Part -  Adding Windows 2008R2 server as additional Domain Controller to this Samba4 domain controller, checking replication, adding Windows XP Client, checking Dynamic DNS updates, Group policy configuration.