3.1 Provisioning Database: Difference between revisions

From SambaWiki
No edit summary
 
No edit summary
Line 7: Line 7:


|-Samba Base
|-Samba Base

|---Manager
|---Manager

|------syncuser
|------syncuser

|------sambaadmin
|------sambaadmin

|------mailadmin
|------mailadmin

|---------Users
|---------Users
|-----------People

|-----------People
|-----------root
|-----------asender

|-------------------root
|-----------simo
|-----------Computers

|-------------------asender
|-----------workstation1$
|-----------workstation2$

|-------------------simo

|-----------Computers

|-------------------workstation1$
|-------------------workstation2$

|---------Groups
|---------Groups
|-----------Domain Admin

|-----------Domain Admin
|-----------root
|-----------Domain Users

|-------------------root
|-----------root
|-----------asender

|---------- Domain Users
|-----------simo
|-----------Domain Guests

|-------------------root
|------------nobody
|-----------Domain Computers

|-------------------asender
|-----------workstation1$
|-----------workstation2$

|-------------------simo
|-----------Domains

|------------ Domain Guests

|--------------------nobody

|------------ Domain Computers

|--------------------workstation1$

|--------------------workstation2$

|----------Domains

|-------------sambaDomainName
|-------------sambaDomainName


'''Step1'''


Step1



Delete all runtime files from prior Samba operation by executing;
Delete all runtime files from prior Samba operation by executing;


[root@node1]# rm /etc/samba/*tdb
[root@node1]# rm /var/lib/samba/*tdb
[root@node1]# rm /var/lib/samba/*dat
[root@node1]# rm /var/log/samba/*


'''Step2'''
[root@node1]# rm /etc/samba/*tdb

[root@node1]# rm /var/lib/samba/*tdb

[root@node1]# rm /var/lib/samba/*dat

[root@node1]# rm /var/log/samba/*


Step2



Delete any previous LDAP database
Delete any previous LDAP database


[root@node1]# cd /var/lib/ldap
[root@node1]# rm –rf *

[root@node1]# cd /var/lib/ldap

[root@node1]# rm –rf *



Step3


'''Step3'''


Login to node2 - the backup domain controller, and do the same.
Login to node2 - the backup domain controller, and do the same.




Step4
'''Step4'''


[root@node1 ~]# net getlocalsid
SID for domain NODE1 is: S-1-5-21-3809161173-2687474671-1432921517

[root@node1 ~]# net getlocalsid

SID for domain NODE1 is: S-1-5-21-3809161173-2687474671-1432921517



Your SID will differ to the one above; you will need to alter the preload LDIF as per below.
Your SID will differ to the one above; you will need to alter the preload LDIF as per below.



Step5
'''Step5'''



Login to your backup domain controller (node2) and type the following command using the SID obtained from step4.
Login to your backup domain controller (node2) and type the following command using the SID obtained from step4.


[root@node2 ~]# net setlocalsid S-1-5-21-3809161173-2687474671-1432921517

[root@node2 ~]# net setlocalsid S-1-5-21-3809161173-2687474671-1432921517

Revision as of 06:14, 25 January 2007

3.1: Provisioning Database

We are going to manually create our initial LDAP database in a text file and be confident to use it in a full production environment.

Our LDAP database structure will look like the following if using the preload ldif as per section 3.2 Preload LDIF


|-Samba Base |---Manager |------syncuser |------sambaadmin |------mailadmin |---------Users

         |-----------People                          
                     |-----------root                       
                     |-----------asender
                     |-----------simo
         |-----------Computers                     
                     |-----------workstation1$
                     |-----------workstation2$

|---------Groups

         |-----------Domain Admin               
                     |-----------root                     
         |-----------Domain Users                
                     |-----------root
                     |-----------asender
                     |-----------simo
         |-----------Domain Guests            
                     |------------nobody
         |-----------Domain Computers       
                     |-----------workstation1$
                     |-----------workstation2$

|-----------Domains |-------------sambaDomainName


Step1

Delete all runtime files from prior Samba operation by executing;

[root@node1]#   rm /etc/samba/*tdb
[root@node1]#   rm /var/lib/samba/*tdb
[root@node1]#   rm /var/lib/samba/*dat
[root@node1]#   rm /var/log/samba/*

Step2

Delete any previous LDAP database

[root@node1]#  cd /var/lib/ldap
[root@node1]#  rm –rf *


Step3

Login to node2 - the backup domain controller, and do the same.


Step4

[root@node1 ~]# net getlocalsid
SID for domain NODE1 is: S-1-5-21-3809161173-2687474671-1432921517

Your SID will differ to the one above; you will need to alter the preload LDIF as per below.


Step5

Login to your backup domain controller (node2) and type the following command using the SID obtained from step4.

[root@node2 ~]# net setlocalsid S-1-5-21-3809161173-2687474671-1432921517