Ubuntu 18 04 : Active Directory Doman Controller
HTML-код
- Опубликовано: 28 авг 2024
- So you have a few windows desktops and you need to have a centralised user account server. You don't have to but licenses for Windows Servers you can host Active Directory for free in Linux. Sure it is your choice but why splash the cash when you don't need to. In this video we install and configure the Samba 4 Active Domain Controller on Ubuntu 18.04 and join a windows desktop to the domain.
Additionally you can find my video courses on Pluralsight: pluralsight.com... and take time to see my own site www.theurbanpen...
Best tutorial I have ever seen. Thumbs up. It simply works!!
Thank you
Worth noting that this no longer works quite as easily as of Windows 22H2. The new issue is fixed in Samba versions 4.16+, but those versions haven't yet appeared in the standard repositories for many major Linux distributions. So you may need to take extra steps to get those newer versions of Samba.
Thanks for this. Much easier to follow and more clearly explained that the official guide on the samba website.
Ah, man! Talk about a top-tier tutorial! 🔥
I have read documents at ubuntu web, samba web,... and I could't understand. But when I found this, very clearly step by step. Thank you a lot.
:)
from a lot of time , I saw many videos and internet pages and was successful to install AD but could not join clients , but this video was the shortest and the best working, I successfully installed AD on UBUNTU server 16.04.6 LTS, joined computers and tested GP within 1 hr, thanks you Penguin
This is great have 20 machines I need to add including VM's. This is exaclty what I was looking for
Great tuturial , ive finish a project last year with it help me a lot , then i 've configured the AD in win 10 client using RSAT °=)
Exactly what I needed. Thank you!
Wish you would show this with a new version of ubuntu server and win10 clients. There are no tutorials out there with the new stuff. :(
Awesome very clear information and you make it very simple
Great tutorial! Got it set up on Ubuntu 20.04 and Windows Clients can join the domain successfully
I just need to know how to get the Domain Controller to authenticate Domain Users when logging in to the Domain Controller, rather than having to log in with a local account.
Thank you so much for a top video, finally I manage to set it up. So now it is working perfect, is there any chance you would also make a video on how to set up a fileserver (SAMBA) and connect it to this SAMBA Active Directory Doman Controller? And make some file shares to map with RSAT?
I have read someplace that it is not recommended to use the SABA Active Directory Domain Controller as a SAMBA file share, as this can lead to strange behavior in the network.
But I really want to thank you for this easy and very straight forward tutorial video, keep up the good work… And you have now gain a new follower 😊
Do you have a continuation of this on how to setup roaming profile shares? Would love that! The documentation for samba on how to do that is confusing
Thanks for your information. This works for version 18.04 below but not working on Ubuntu 20.04. what changes should be done. Please make a video for Ubuntu 20.04
Everything seemed to go well but when I come to joining the Windows machine to the domain, it cannot be found. ipconfig /displaydns is empty, and I forget the other command I ran which shows a DNS timeout. Apparently the samba set up is not responding. I can ping the IP but not the hostname. Any tips?
Check the windows machine is under the same ip range from the DC. You can easily do this by just manually asigning the ipv4 to the machine on the network adapter configuration. If you are using an internal network in a VM environment, you will need to configure the DNS/gateway/the static ip for the ad-dc server on the same internal network range. Hope this can help.
Wow! it is now very simple ...
2000 is long gone ...
;-)
LOL
nice video! would you be able to expand on this as to how you would migrate windows AD accounts to the new samba server?
This is one of the best video I have ever seen. It helps me a lot. but I want to know how to create groups and OU in linux. Thank you.
hello your tutorial is functional thank you.
I also have a problem:
When I connect to a Windows 7 client with the administrator settings, I cannot access the active directory where I will be able to see the users and machines that I will have created.
Following your tutorial I would like to deepen by creating users, groups, deployment of dhcp
question: how to display the interface of the active directory, dns, on a windows 7 client on which I would connect with the administrator settings?
THANK YOU
Thank you for Your dedication in this video, it Help me A LOT! Regards
Best Tutorial!!!!!
Is it working with win10?
Thank you so much! You are the best!
Thanks a bunch Andrew great vid , I have always wondered about AD on linux :-) nice 1 keep smiling best regards Lance :-)
Its is a good option where you don't need to go down the full AD track of exchange and 365
4:46 I followed all the steps and it says "ERROR: No Realm Set!"
outstanding!
muchas gracias me salvaste el semestre :)
Nice but one question. Is there any tutorial how to setup a backup DC in case the first one fails?
EDIT: At first this didnt work for me on 18.04.6 or 20.04.4 version of Ubuntu Server. When editing file /etc/hosts i had to delete first two IP adresses starting with 127. and then entering my DC server IP just as it says in this tutorial, then the DNS can properly resolve. ps. after shutting down or restarting DC server, you have to manual start SAMBA service with command sudo samba.
Great tutorial, thanks very much. If you wanted to use the same server for file sharing to windows clients, how would you do that? The samba website highly recommends against this, but we only really have one server to work with, so I don't really have a choice. What are your recommendations?
Can't you simply create samba shares on it?
Thanks for the video, great video as always. I will ask for the link, as you probably have done video how to join Linux in to MS AD. Thanks.
This tutorial works great and I've implemented it on a Pi 4. However the Pi can now no longer connect to the internet. Is this expected behaviour?
Hi mate, are you using Pi as a server?
@@mitrazein5174 Hi there, yes I was. I followed the tutorial above.
@@Dirnkus_Ginish have you solved the problem that your pi cannot connect to the internet?
@@mitrazein5174 I gave up in the end and bought a Windows server
@@Dirnkus_Ginish oh no :')
How do you manage user settings, printers, privileges, group shares, ect...using this method. Basically...everything that Windows group policy does?
The same as with normal AD. You log in with AD admin account and use administration tools.
@@SMJSmoK you're claiming that Ubuntu has all the same functionalities as Windows Server?
How to join Ubuntu desktop in Ubuntu ad server and how to manage users permission plz told
could you show me how to join ubuntu AD from ubuntu desktop ?
hell yeah, I want to learn how to do this as well. I create users and groups already.
Amazing 🙌🙌🙌
As Always great content.
thanks
Thank you
Thank You
i am stuck at the login part, i can’t login
How do I install and configure DNS? Do you have video available?
Excelent!
How to add a additional domain?
Does this method support higher forest levels?
Thank you...
Followed this video created a server with adc , then on top I installed lubuntu desktop with tasksel now in gui there comes a network manager which always automate resolv.conf at startup how can we handle that ?
delete the /etc/resolv.conf snd recreate it again. NM adds a symlink that you will break when you delete the file
Love you bro! thx!
and if i have a new version of ubuntu ?
for 100 computers using samba still possible?
How to change to name from users ?
you make it sound so EZ
and it is!!. Thanks for the comment
I can't update my rrespositories anymore
why when i write samba-tool domain provision behind realm there is completly nothing ? but the tutorial is preety good and when somebody will answer me i will be happy :D
same issue I am having
Sirve perfectamente
cambiaste la ip antes de hacerlo?? :/
Hi.
In order to do this, do you need Ubuntu Server or Desktop?
Thanks.
Ubuntu does not differentiate between server and desktop anymore, so either with or without a GUI. Management is from the Linux CLI or from Your windows administration tools
@@theurbanpenguin Great, thank you.
subtitles please in spannish
Hi there, I hope that someone can help me out, I'm trying to make and AD controller on ubuntu server but even following this guide that I found amazing, I cannot do it, I mean, I tried to followed step by step this guide either in Ubuntu Server 18.04 and Ubuntu 20.04 but when I try to connect a Windows machine to the AD that I created, WIndows never finds it so...when I type ''samba-tool domain level show'' it says Windows 2008 R2 as this guide but it doesn't work and I don't understand why, There is another method maybe with a GUI that can help me to create this AD controller?? thanks to anyone is too gentle to help me.
I had too this problem on ubuntu 20.04
check command:
smbclient -L localhost
And You should see
Enter administrator@EXAMPLE2.COM's password:
Sharename Type Comment
--------- ---- -------
sysvol Disk
netlogon Disk
IPC$ IPC IPC Service (Samba 4.11.6-Ubuntu)
Reconnecting with SMB1 for workgroup listing.
Server Comment
--------- -------
Workgroup Master
--------- -------
WORKGROUP H9
but probably you see only:
Enter administrator@EXAMPLE2.COM's password:
Sharename Type Comment
--------- ---- -------
sysvol Disk
netlogon Disk
IPC$ IPC IPC Service (Samba 4.11.6-Ubuntu)
SMB1 disabled -- no workgroup available
Sou You should edit
/etc/samba/smb.conf
[global]
...
client min protocol = NT1
server min protocol = NT1
Lost me at 3:37, I like how you just went ahead and typed the ip without telling us how to find out what our own ip is. Sigh..
Also it does not allow me to type anything.
can we also manage the group policy from samba?
Yes, stored on sysvol as with MS. Managed with RSAT group policy plugin
Have a GUI or front end ?
Webmin.
Do you have a GUI version of this domain setup
Use the remote server tools microsoft supply
Thanks
I've gone through dozens of tutorials for this process and EVERY ONE fails at precisely the same point: Attempting domain provisioning self join, it returns NT_STATUS_NOT_SUPPORTED attempting smbd.set_nt_acl(file,...)
This tutorial is no different!
From the video, it is clear that you have already performed some initial configuration (hostname, the hosts file and NTP have all been configured at the least). Every other tutorial I have seen has assumed that a bit of unnamed preconfiguration was completed.
Have you actually tried this process (and succeeded) on a first-boot system, before you performed any initial configuration? Each and every step should be included in a tutorial like this, otherwise it disappears into the ocean of poorly documented nerd projects.
What step(s) had you performed on the system before you started the tutorial? Something absolutely critical is missing in this tutorial.
I tried severals tutorials, all failed. Debian 10 and Ubuntu 18.04. Did you find any that works?
@@meuplayermultimidia2527 Not yet, and prospects point towards building from source. The current version of Samba available on Ubuntu 16.04 or 18.04 (4.7.6) will continue to fail for the same reason. I'm currently teaching myself how to build from source and safely maintain it...the trail I've followed indicates that Samba 4.10 plus should work again.
This and the large number of no longer successful tutorials out there is one reason why I believe that all geeks should be forced to include dates and ALL relevant version details and ALL previous configuration steps, and profusely ridiculed for not doing so...When a scientist outlines a discovery which can't be repeated, that scientist is questioned and doubted. This IS computer science...
put dns on client ipv4. ip of servdc1
Are you using a version of Windows that can connect to a domain? You typically need Pro, Enterprise or Ultimate depending on the Windows version. The std home version will not connect to a domain.
I hate watching tutorials that don't work
Group policies!!
Yes, stored on sysvol as with MS. Managed with RSAT group policy plugin