3.1 Provisioning Database: Difference between revisions

From SambaWiki
No edit summary
 
No edit summary
 
(4 intermediate revisions by the same user not shown)
Line 1: Line 1:
[[1.0: Configuring Samba]]
'''3.1: Provisioning Database'''


[[2.0: Configuring LDAP]]
We are going to manually create our initial LDAP database in a text file and be confident to use it in a full production environment.


[[3.0: Initialization LDAP Database]]
Our LDAP database structure will look like the following if using the preload ldif as per section 3.2 Preload LDIF


[[4.0: User Management]]


[[5.0: Heartbeat HA Configuration]]
|-Samba Base


[[6.0: DRBD]]
|---Manager


[[7.0: BIND DNS]]
|------syncuser


----
|------sambaadmin


|------mailadmin


<u>'''Table of Contents'''</u>
|---------Users

|-----------People

|-------------------root

|-------------------asender

|-------------------simo

|-----------Computers

|-------------------workstation1$
[[3.1 Provisioning Database]]
|-------------------workstation2$


[[3.2 Preload LDIF]]
|---------Groups


[[3.3 LDAP Population]]
|-----------Domain Admin


[[3.4 Database Replication]]
|-------------------root


|---------- Domain Users


|-------------------root


We are going to manually create our initial LDAP database in a text file and be confident to use it in a full production environment.
|-------------------asender


Our LDAP database structure will look like the following if using the preload ldif as per section 3.2 Preload LDIF
|-------------------simo


|------------ Domain Guests


|-Samba Base
|--------------------nobody
|---Manager

|------------ Domain Computers
|------syncuser
|------sambaadmin

|------mailadmin
|--------------------workstation1$
|---------Users

|--------------------workstation2$
|-----------People
|-----------root

|----------Domains
|-----------asender
|-----------simo

|-------------sambaDomainName
|-----------Computers
|-----------workstation1$

|-----------workstation2$
|---------Groups

|-----------Domain Admin
|-----------root

|-----------Domain Users
Step1
|-----------root
|-----------asender
|-----------simo
|-----------Domain Guests
|------------nobody
|-----------Domain Computers
|-----------workstation1$
|-----------workstation2$
|-----------Domains
|-------------sambaDomainName


'''Step1'''


Delete all runtime files from prior Samba operation by executing;
Delete all runtime files from prior Samba operation by executing;


[root@node1]# rm /etc/samba/*tdb
[root@node1]# rm /var/lib/samba/*tdb
[root@node1]# rm /var/lib/samba/*dat
[root@node1]# rm /var/log/samba/*


'''Step2'''
[root@node1]# rm /etc/samba/*tdb

[root@node1]# rm /var/lib/samba/*tdb

[root@node1]# rm /var/lib/samba/*dat

[root@node1]# rm /var/log/samba/*


Step2



Delete any previous LDAP database
Delete any previous LDAP database


[root@node1]# cd /var/lib/ldap
[root@node1]# rm –rf *

[root@node1]# cd /var/lib/ldap

[root@node1]# rm –rf *



Step3


'''Step3'''


Login to node2 - the backup domain controller, and do the same.
Login to node2 - the backup domain controller, and do the same.




Step4
'''Step4'''


[root@node1 ~]# net getlocalsid
SID for domain NODE1 is: S-1-5-21-3809161173-2687474671-1432921517

[root@node1 ~]# net getlocalsid

SID for domain NODE1 is: S-1-5-21-3809161173-2687474671-1432921517



Your SID will differ to the one above; you will need to alter the preload LDIF as per below.
Your SID will differ to the one above; you will need to alter the preload LDIF as per below.



Step5
'''Step5'''



Login to your backup domain controller (node2) and type the following command using the SID obtained from step4.
Login to your backup domain controller (node2) and type the following command using the SID obtained from step4.


[root@node2 ~]# net setlocalsid S-1-5-21-3809161173-2687474671-1432921517

[root@node2 ~]# net setlocalsid S-1-5-21-3809161173-2687474671-1432921517

Latest revision as of 13:42, 25 January 2007

1.0: Configuring Samba

2.0: Configuring LDAP

3.0: Initialization LDAP Database

4.0: User Management

5.0: Heartbeat HA Configuration

6.0: DRBD

7.0: BIND DNS



Table of Contents

3.1 Provisioning Database

3.2 Preload LDIF

3.3 LDAP Population

3.4 Database Replication


We are going to manually create our initial LDAP database in a text file and be confident to use it in a full production environment.

Our LDAP database structure will look like the following if using the preload ldif as per section 3.2 Preload LDIF


|-Samba Base
|---Manager                  
|------syncuser                
|------sambaadmin           
|------mailadmin               
|---------Users                              
         |-----------People                          
                     |-----------root                       
                     |-----------asender
                     |-----------simo
         |-----------Computers                     
                     |-----------workstation1$
                     |-----------workstation2$
|---------Groups                
         |-----------Domain Admin               
                     |-----------root                     
         |-----------Domain Users                
                     |-----------root
                     |-----------asender
                     |-----------simo
         |-----------Domain Guests            
                     |------------nobody
         |-----------Domain Computers       
                     |-----------workstation1$
                     |-----------workstation2$
|-----------Domains             
|-------------sambaDomainName


Step1

Delete all runtime files from prior Samba operation by executing;

[root@node1]#   rm /etc/samba/*tdb
[root@node1]#   rm /var/lib/samba/*tdb
[root@node1]#   rm /var/lib/samba/*dat
[root@node1]#   rm /var/log/samba/* 

Step2

Delete any previous LDAP database

[root@node1]#  cd /var/lib/ldap
[root@node1]#  rm –rf *


Step3

Login to node2 - the backup domain controller, and do the same.


Step4

[root@node1 ~]# net getlocalsid
SID for domain NODE1 is: S-1-5-21-3809161173-2687474671-1432921517

Your SID will differ to the one above; you will need to alter the preload LDIF as per below.


Step5

Login to your backup domain controller (node2) and type the following command using the SID obtained from step4.

[root@node2 ~]# net setlocalsid S-1-5-21-3809161173-2687474671-1432921517