Difference between revisions of "Distribution-specific Package Installation"

From SambaWiki
m
m (Corrected the Debian+Ubuntu DC hostname/domain name example to align with the example on the parent page)
(One intermediate revision by the same user not shown)
Line 30: Line 30:
   
 
= Debian =
 
= Debian =
  +
  +
The following command will prompt you for Kerberos information, and hostname information for the domain controller. Example entries for the Kerberos 5 Realm, Kerberos servers for the realm and hostname of the administrator server are as follows for a DC with the hostname <code>dc1</code> in the domain <code>SANDOM.EXAMPLE.COM</code>
  +
  +
- SANDOM.EXAMPLE.COM
  +
  +
- dc1.sandom.example.com
  +
  +
- dc1.sandom.example.com
   
 
# apt-get install acl attr samba samba-dsdb-modules samba-vfs-modules winbind libpam-winbind libnss-winbind libpam-krb5 krb5-config krb5-user
 
# apt-get install acl attr samba samba-dsdb-modules samba-vfs-modules winbind libpam-winbind libnss-winbind libpam-krb5 krb5-config krb5-user
   
Note1: For a DC you do not need libpam-winbind libnss-winbind libpam-krb5, unless you require AD users to login
+
*Note1: For a DC you do not need libpam-winbind libnss-winbind libpam-krb5, unless you require AD users to login
   
Note2: For a DC, you will also need to install <code>dnsutils</code>
+
*Note2: For a DC, which will become the new DNS server for the domain, install <code>dnsutils</code> with the following command:
   
  +
# apt-get install dnsutils
Note3: For a DC, you will also need ntp or chrony
 
  +
  +
*Note3: For a DC to serve as the domain NTP server, you will also need <code>ntp</code> or <code>chrony</code>. '''However:''' This is not explicitly necessary for domain-joined machines to share a common NTP server. It is possible to define a Group Policy Object that synchronizes workstations with <code>time.windows.com</code> post installation. Either package can be installed via:
  +
  +
# apt-get install chrony
  +
  +
For details about time synchronization, see [[Time_Synchronisation|Time Synchronization]].
   
   
   
 
= Ubuntu =
 
= Ubuntu =
  +
The following command will prompt you for Kerberos information, and hostname information for the domain controller. Example entries for the Kerberos 5 Realm, Kerberos servers for the realm and hostname of the administrator server are as follows for a DC with the hostname <code>dc1</code> in the domain <code>SANDOM.EXAMPLE.COM</code>
   
  +
- SANDOM.EXAMPLE.COM
# apt-get install acl attr samba samba-dsdb-modules samba-vfs-modules winbind libpam-winbind libnss-winbind libpam-krb5 krb5-config krb5-user
 
  +
  +
- dc1.sandom.example.com
  +
  +
- dc1.sandom.example.com
  +
 
$ sudo apt-get install acl attr samba samba-dsdb-modules samba-vfs-modules winbind libpam-winbind libnss-winbind libpam-krb5 krb5-config krb5-user
  +
 
*Note1: For a DC you do not need libpam-winbind libnss-winbind libpam-krb5, unless you require AD users to login
  +
 
*Note2: For a DC, which will become the new DNS server for the domain, install <code>dnsutils</code> with the following command:
   
  +
$ sudo apt-get install dnsutils
Note1: For a DC you do not need libpam-winbind libnss-winbind libpam-krb5, unless you require AD users to login
 
   
  +
*Note3: For a DC to serve as the domain NTP server, you will also need <code>ntp</code> or <code>chrony</code>. '''However:''' This is not explicitly necessary for domain-joined machines to share a common NTP server. It is possible to define a Group Policy Object that synchronizes workstations with <code>time.windows.com</code> post installation. Either package can be installed via:
Note2: For a DC, you will also need to install <code>dnsutils</code>
 
   
  +
$ sudo apt-get install ntp
Note3: For a DC, you will also need ntp or chrony
 
  +
or
  +
$ sudo apt-get install chrony
   
  +
For details about time synchronization, see [[Time_Synchronisation|Time Synchronization]].
   
   

Revision as of 19:56, 19 August 2022

Introduction

The following is a distribution-specific list of commands to install Samba.

Note, that the list of commands is neither provided nor actively verified by the Samba team. If you see any missing packages or incorrect package names, please update the command or send the information to the Samba mailing list.



Red Hat Enterprise Linux / CentOS / Scientific Linux

Version 7 and 8

# yum install samba

The samba package only supports Samba as a domain member and NT4 PDC or BDC. Red Hat does not provide packages for running Samba as an AD DC. As an alternative:

  • Build Samba. For details, see Build Samba from Source.
  • Use 3rd-party packages with AD support from a trusted source.

Version 6

# yum install samba4

The samba4 package only supports Samba as a domain member and NT4 PDC or BDC. Red Hat does not provide packages for running Samba as an AD DC. As an alternative:

  • Build Samba. For details, see Build Samba from Source.
  • Use 3rd-party packages with AD support from a trusted source.


Debian

The following command will prompt you for Kerberos information, and hostname information for the domain controller. Example entries for the Kerberos 5 Realm, Kerberos servers for the realm and hostname of the administrator server are as follows for a DC with the hostname dc1 in the domain SANDOM.EXAMPLE.COM

- SANDOM.EXAMPLE.COM

- dc1.sandom.example.com

- dc1.sandom.example.com

# apt-get install acl attr samba samba-dsdb-modules samba-vfs-modules winbind libpam-winbind libnss-winbind libpam-krb5 krb5-config krb5-user
  • Note1: For a DC you do not need libpam-winbind libnss-winbind libpam-krb5, unless you require AD users to login
  • Note2: For a DC, which will become the new DNS server for the domain, install dnsutils with the following command:
# apt-get install dnsutils
  • Note3: For a DC to serve as the domain NTP server, you will also need ntp or chrony. However: This is not explicitly necessary for domain-joined machines to share a common NTP server. It is possible to define a Group Policy Object that synchronizes workstations with time.windows.com post installation. Either package can be installed via:
# apt-get install chrony

For details about time synchronization, see Time Synchronization.


Ubuntu

The following command will prompt you for Kerberos information, and hostname information for the domain controller. Example entries for the Kerberos 5 Realm, Kerberos servers for the realm and hostname of the administrator server are as follows for a DC with the hostname dc1 in the domain SANDOM.EXAMPLE.COM

- SANDOM.EXAMPLE.COM

- dc1.sandom.example.com

- dc1.sandom.example.com

$ sudo apt-get install acl attr samba samba-dsdb-modules samba-vfs-modules winbind libpam-winbind libnss-winbind libpam-krb5 krb5-config krb5-user
  • Note1: For a DC you do not need libpam-winbind libnss-winbind libpam-krb5, unless you require AD users to login
  • Note2: For a DC, which will become the new DNS server for the domain, install dnsutils with the following command:
$ sudo apt-get install dnsutils
  • Note3: For a DC to serve as the domain NTP server, you will also need ntp or chrony. However: This is not explicitly necessary for domain-joined machines to share a common NTP server. It is possible to define a Group Policy Object that synchronizes workstations with time.windows.com post installation. Either package can be installed via:
$ sudo apt-get install ntp

or

$ sudo apt-get install chrony

For details about time synchronization, see Time Synchronization.


FreeBSD

# pkg install net/samba44

Note: If you want to use the idmap_ad Winbind back end (on e.g. an AD Member Server), you have to build the port by hand and select the EXP_MODULES configuration option!

SUSE Linux Enterprise / openSUSE

# zypper install samba samba-winbind samba-ad-dc