For this example, we will use<\/strong> the domain ‘company.com<\/strong>‘ and the server will have the name ‘srv<\/strong>‘.<\/p>\n Start issuing the commands:<\/p>\n At this point create one password for the user ‘root<\/strong>‘, because you will have to proceed as ‘su<\/strong>‘ instead of the command ‘sudo<\/strong>‘. Then switch to root user:<\/p>\n Three questions will popup. Answer the domain name in UPPERCASE:<\/p>\n Than answer twice<\/strong> in lowercase<\/strong> the FQDN for the server of your domain:<\/p>\n Issue the command below, but replace the IP ‘10.0.2.254<\/strong>‘ with your ‘srv<\/strong>‘ IP and domain name:<\/p>\n Issue the commands to start a new Samba configuration:<\/p>\n Follow the steps from the image above. For the DNS Forward, we are going to use the Google Public DNS Server (‘8.8.8.8<\/strong>‘). Then set the password to the user ‘Administrator<\/strong>‘ of the Active Directory, and you may get the same result:<\/p>\n Here the Samba configuration starts:<\/p>\n DONE! Now check that everything is working properly:<\/p>\n Go to the client computer (Windows or Linux) and change the DNS server to the IP address of your server (in my example was 10.0.2.254<\/strong>).<\/p>\n Then go to the command prompt and try to ping ‘srv.company.com<\/strong>‘, ‘company.com<\/strong>‘, ‘srv<\/strong>‘, and ‘google.com<\/strong>‘.<\/p>\n If all the ping were resolved and the pings went through, go ahead and try to join the computer to de domain.<\/p>\n Now joining the computers to the domain and create users in the AD.<\/p>\n Most popular commands of commands:<\/p>\n Few other commands for special requests:<\/p>\nsudo apt update && sudo apt upgrade -y\r\nsudo passwd root\r\nsudo hostnamectl set-hostname srv<\/span><\/span><\/pre>\nsu\r\napt-get install samba krb5-config winbind net-tools smbclient -y<\/pre>\n
COMPANY.COM<\/pre>\n
srv.company.com<\/pre>\n
echo '10.0.4.254 srv srv.company.com' >> \/etc\/hosts<\/pre>\n
mv \/etc\/samba\/smb.conf \/etc\/samba\/smb.conf.bkp\r\nsamba-tool domain provision<\/pre>\n
![\"\"](\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2020\/09\/image-87.png\")
<\/figure>\n![\"\"](\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2020\/09\/image-88.png\")
<\/figure>\ncp \/var\/lib\/samba\/private\/krb5.conf \/etc\/\r\nsystemctl disable --now smbd nmbd winbind systemd-resolved\r\nsystemctl unmask samba-ad-dc.service\r\nsystemctl enable --now samba-ad-dc.service\r\nsamba-tool domain level show<\/pre>\n
![\"\"](\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2020\/09\/image-85.png\")
<\/figure>\nrm \/etc\/resolv.conf\r\necho 'nameserver 127.0.0.1' >> \/etc\/resolv.conf<\/pre>\n
sudo samba-tool user list\r\nsudo samba-tool user create UserName\r\nsudo samba-tool user delete UserName\r\nsudo samba-tool user disable UserName\r\nsudo samba-tool user enable UserName\r\nsudo samba-tool user setpassword UserName\r\nsudo samba-tool user setexpiry UserName --days=30\r\nsudo samba-tool group list\r\nsudo samba-tool group listmembers GroupName\r\nsudo samba-tool group add GroupName\r\nsudo samba-tool group delete GroupName\r\nsudo samba-tool group addmembers GroupName UserName\r\nsudo samba-tool group removemembers GroupName UserName\r\nsudo samba-tool computer list<\/pre>\n
sudo samba-tool group add \u2013h\r\nsudo samba-tool user add -h\r\nsudo samba-tool user add domainName --given-name=givenName --surname=surName --mail-address=userName@example.com --login-shell=\/bin\/bash\r\nsudo samba-tool domain passwordsettings show\r\nsudo samba-tool domain passwordsettings set -h\r\nsudo samba-tool gpo listall\r\nsudo samba-tool drs showrepl\r\nsudo samba-tool dns -help\r\nsudo samba-tool dns query 10.0.0.1 example.com zone A -U Administrator\r\nsudo samba-tool dns zonecreate domain.local 0.0.10.in-addr.arpa -U Administrator\r\nsudo samba-tool processes\r\nsudo samba-tool visualize ntdsconn\r\nsudo samba-tool visualize reps<\/pre>\n