Changing the DNS Back End of a Samba AD DC

Revision as of 22:45, 5 September 2015 by Mmuehlfeld (talk | contribs) (Rework the "Changing the DNS backend" documentation. Being more clear and giving more examples.)

Introduction

During the provisioning step of a new Samba Active Directory Domain Controller, you have decite which DNS backend, if any, should be used: The internal DNS or BIND_DLZ. In some cases, it might be necessary, to revise this decission because of problems, limitations or other reasons. In the following we describe, how to change the DNS backend on a Samba AD Domain Controller.

See the server information used in documentation page for used pathes, hostnames, etc.



Changing from Samba internal DNS to BIND_DLZ

  • Shutdown Samba
  • Migrate the backend to BIND_DLZ
# /usr/local/samba/sbin/samba_upgradedns --dns-backend=BIND9_DLZ
  • Change the "server services" parameter. You're having two options, to disable BIND_DLZ and enable the internal DNS:
1st way: If you're not having this parameter in your smb.conf, add it just with the "-dns" option. All other values are taken from the defaults (see man page).
server services = -dns
2nd way: Change the "dns" option to "-dns":
server services = ........ dns -dns
  • Enable automatic startup of BIND at boot time, e. g. by using "chkconfig", "systemctl", etc. - depending on your distribution.
  • Start BIND
  • Start Samba



Changing from BIND_DLZ to Samba internal DNS

  • Shutdown BIND
  • Disable automatic startup of BIND at boot time, e. g. by using "chkconfig", "systemctl", etc. - depending on your distribution.
  • Shutdown Samba
  • Migrate the backend to Samba internal DNS
# /usr/local/samba/sbin/samba_upgradedns --dns-backend=SAMBA_INTERNAL
  • Change the "server services" parameter. You're having three options, to disable BIND_DLZ and enable the internal DNS:
1st way: The internal DNS is part of the "server services" defaults (see man page). Remove the "service services" parameter completely, if the other options are also defaults.
server services = ..... dns
2nd way: Add the "dns" option to the "server services" parameter:
server services = ..... dns
3rd way: Change the "-dns" option to "dns":
server services = ........ -dns dns
  • Start Samba