Master
in /etc/samba/smb.conf
# Global parameters
[global]
dns forwarder = 10.0.2.3
netbios name = ADDC1
realm = ROOMIT.SSO
server role = active directory domain controller
workgroup = ROOMIT
idmap_ldb:use rfc2307 = yes
### BARU ###
tls enabled = yes
tls keyfile = tls/key.pem
tls certfile = tls/cert.pem
tls cafile = tls/ca.pem
winbind use default domain = yes
template homedir = /home/%U
template shell = /bin/bash
ntlm auth = mschapv2-and-ntlmv2-only
client ldap sasl wrapping = sign
ldap server require strong auth = no
interfaces = lo eth1
bind interfaces only = yes
[netlogon]
path = /var/lib/samba/sysvol/roomit.sso/scripts
read only = No
[sysvol]
path = /var/lib/samba/sysvol
read only = Noon slave initiate replication
samba-tool domain join roomit.sso DC -U administrator --dns-backend=SAMBA_INTERNALon master
tdbbackup -s .bak /etc/samba/idmap.ldb
scp scp idmap.ldb.bak vagrant@192.168.33.14:~/on slave
cp ~/idmap.ldb.bak /etc/samba/idmap.ldb
systemctl start sambaon slave master check replication:
samba-tool drs showreplcopy config /etc/samba/smb.cnf on master to slave, don’t forget ssl and dns forwarder parameter.
