NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Samba v3.3.7 addon as a domain controller
Hello I want Create with the Samba v3.3.7 addon on my NV+ a domain controller, I do not yet know me with samba, unfortunately. I would be happy if you can help me. In my network ar 8 machine w...
Hi,
First of all, make sure the registry keys below have been applied to the Windows 7 hosts before joining them to the domain. You will get trust relationship issues if you don't and will need a local admin account to fix them.
1. Make sure you do not have a system elevated to master browser / domain controller status on a network for the domain you want to host on the ReadyNAS. Otherwise, this will not work.
2. You will need to have root SSH access via the official addon if you haven't installed it already - read the notes about support though if you have not.
3. Backup your /etc/samba/smb.conf file first, in case it goes wrong.
4. Make sure that within FrontView that the Security Mode is set to User and the Workgroup is the name of the Domain you would like to host for.
5. Create a group within FrontView to contain your domain admin users. At a minimum, it needs to have the user admin in it.
6. Edit /etc/samba/smb.conf and make the below exists within the [global] section. To be honest, it's been a while and I can't remember which exact pieces I needed to add versus modify. Also note there are parameters that need updating so please read the below.
7. Restart Samba by running /etc/init.d/samba restart
The above will also give you Roaming profiles so you may need to set Group Policies on the hosts to redirect roaming profile directories to local ones if the profiles end up being large and slow to logon / logoff.
First of all, make sure the registry keys below have been applied to the Windows 7 hosts before joining them to the domain. You will get trust relationship issues if you don't and will need a local admin account to fix them.
HKLM\System\CurrentControlSet\Services\LanmanWorkstation\Parameters
DWORD DomainCompatibilityMode = 1
DWORD DNSNameResolutionRequired = 0
1. Make sure you do not have a system elevated to master browser / domain controller status on a network for the domain you want to host on the ReadyNAS. Otherwise, this will not work.
2. You will need to have root SSH access via the official addon if you haven't installed it already - read the notes about support though if you have not.
3. Backup your /etc/samba/smb.conf file first, in case it goes wrong.
4. Make sure that within FrontView that the Security Mode is set to User and the Workgroup is the name of the Domain you would like to host for.
5. Create a group within FrontView to contain your domain admin users. At a minimum, it needs to have the user admin in it.
6. Edit /etc/samba/smb.conf and make the below exists within the [global] section. To be honest, it's been a while and I can't remember which exact pieces I needed to add versus modify. Also note there are parameters that need updating so please read the below.
add machine script = "/usr/sbin/useradd -s /bin/false -d /dev/null %u"
admin users = @<name of the group you created through FrontView to be your Domain Admins>
domain logons = 1
domain master = 1
encrypt passwords = 1
local master = 1
logon drive = <the drive letter you want the home drive to be - mine is H:>
logon home = \\%L\%U
logon path = \\%L\profiles\%U
logon script = logon.bat
netbios name = %h
os level = 33
passdb backend = smbpasswd
passwd chat = "*New password:*" %n\r "*New password (again):*" %n\r \ "*Password changed*"
passwd program = "/usr/bin/passwd %u"
preferred master = 1
printer admin = @<name of the group you created through FrontView to be your Domain Admins>
template homedir = /c/home/%U
time server = 1
wins support = 1
7. Restart Samba by running /etc/init.d/samba restart
The above will also give you Roaming profiles so you may need to set Group Policies on the hosts to redirect roaming profile directories to local ones if the profiles end up being large and slow to logon / logoff.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
