Difference between revisions of "Changing the DNS Back End of a Samba AD DC"
Mmuehlfeld (talk | contribs) m (Added categories) |
m (/* typo & minor changes) |
||
| Line 25: | Line 25: | ||
:* If you have a <code>server services</code> parameter, remove the <code>dns</code> option. For example: | :* If you have a <code>server services</code> parameter, remove the <code>dns</code> option. For example: | ||
| − | server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate | + | server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate |
:* If you do not have a <code>server services</code> parameter, add the following line: | :* If you do not have a <code>server services</code> parameter, add the following line: | ||
| Line 57: | Line 57: | ||
* Use one of the following ways to disable the <code>BIND9_DLZ</code> module in your <code>smb.conf</code> file:: | * Use one of the following ways to disable the <code>BIND9_DLZ</code> module in your <code>smb.conf</code> file:: | ||
| − | |||
| − | + | * If you have a <code>server services</code> parameter, add the <code>dns</code> option. For example: | |
| − | + | server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns | |
| − | + | * If you only have the <code>-dns</code> option listed in the <code>server services</code> parameter, remove the entire parameter: | |
| − | |||
| − | |||
<s>server services = -dns</s> | <s>server services = -dns</s> | ||
| Line 72: | Line 69: | ||
| + | {{Imbox | ||
| + | | type = note | ||
| + | | text = The internal DNS is one of the default settings of the <code>server services</code> parameter. Removing the <code>server services</code> parameter enables all the default servers including the DNS server. | ||
| + | }} | ||
| + | : | ||
Latest revision as of 15:08, 20 March 2018
Contents
Introduction
Samba enables you to change switch between the INTERNAL_DNS and BIND9_DLZ DNS back end on your Active Directory (AD) domain controller (DC) without loosing data.
Changing From the Samba Internal DNS Server to the BIND9_DLZ Back End
Run on your domain controller (DC):
- Set up and configure the
BIND9_DLZback end. For details, see BIND9_DLZ Back End.
- Shut down the Samba service.
- Migrate the back end:
# samba_upgradedns --dns-backend=BIND9_DLZ
- Use one of the following ways to disable the internal DNS in your
smb.conffile:
- If you have a
server servicesparameter, remove thednsoption. For example:
- If you have a
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate
- If you do not have a
server servicesparameter, add the following line:
- If you do not have a
server services = -dns
- Enable the BIND service to start at boot time. See your distribution's documentation for details.
- Start the BIND service.
- Start the Samba service.
Changing From the BIND9_DLZ Back End to the Samba Internal DNS Server
Run on your domain controller (DC):
- Shut down the BIND service.
- Disable the automatic start of the BIND service at boot time. See your distribution's documentation for details.
- Shut down the Samba service.
- Migrate the back end:
# samba_upgradedns --dns-backend=SAMBA_INTERNAL
- Use one of the following ways to disable the
BIND9_DLZmodule in yoursmb.conffile::
- If you have a
server servicesparameter, add thednsoption. For example:
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns
- If you only have the
-dnsoption listed in theserver servicesparameter, remove the entire parameter:
server services = -dns
- Start the Samba service.
 | The internal DNS is one of the default settings of the server services parameter. Removing the server services parameter enables all the default servers including the DNS server. |