From b1fdd653ddc8a4e35195c21b2d43440cb7d1b4d7 Mon Sep 17 00:00:00 2001 From: Darren 'Tadgy' Austin Date: Fri, 10 Apr 2026 18:22:17 +0000 Subject: [PATCH] Working AD configuration. --- etc/hosts | 3 ++- etc/krb5.conf | 13 +++++++------ etc/ldap/ldap.conf | 4 ++-- etc/resolv.conf | 3 ++- etc/samba/smb.conf | 8 ++++++-- 5 files changed, 19 insertions(+), 12 deletions(-) diff --git a/etc/hosts b/etc/hosts index 5f91ed6..4567ad0 100644 --- a/etc/hosts +++ b/etc/hosts @@ -1,4 +1,5 @@ -5.101.171.215 core core.slackware.uk.net +5.101.171.215 core.slackware.uk.net +10.254.0.215 directory.slackware.uk.internal directory 127.0.0.1 localhost localhost.localdomain ::1 localhost ip6-localhost ip6-loopback localhost.localdomain ff02::1 ip6-allnodes diff --git a/etc/krb5.conf b/etc/krb5.conf index 53cc2af..e986591 100644 --- a/etc/krb5.conf +++ b/etc/krb5.conf @@ -15,12 +15,13 @@ renew_lifetime = 7d udp_preference_limit = 0 [realms] -DIR0.SLACKWARE.UK.INTERNAL = { - default_domain = dir0.slackware.uk.internal - admin_server = dir0.slackware.uk.internal - kdc = dir0.slackware.uk.internal +DIRECTORY.SLACKWARE.UK.INTERNAL = { + default_domain = directory.slackware.uk.internal + admin_server = directory.slackware.uk.internal + kdc = directory.slackware.uk.internal } [domain_realm] -#.slackware.uk.internal = DIR0.SLACKWARE.UK.INTERNAL -core = DIR0.SLACKWARE.UK.INTERNAL +.slackware.uk.internal = DIRECTORY.SLACKWARE.UK.INTERNAL +slackware.uk.internal = DIRECTORY.SLACKWARE.UK.INTERNAL +directory = DIRECTORY.SLACKWARE.UK.INTERNAL diff --git a/etc/ldap/ldap.conf b/etc/ldap/ldap.conf index b1622b3..d52732a 100644 --- a/etc/ldap/ldap.conf +++ b/etc/ldap/ldap.conf @@ -1,7 +1,7 @@ # LDAP Defaults -URI ldap://dir0.slackware.uk.internal -BASE dc=dir0,dc=slackware,dc=uk,dc=internal +URI ldap://directory.slackware.uk.internal +BASE dc=directory,dc=slackware,dc=uk,dc=internal VERSION 3 TLS_CACERT /etc/ssl/certs/ca-certificates.crt diff --git a/etc/resolv.conf b/etc/resolv.conf index 1fe2d51..314c5ab 100644 --- a/etc/resolv.conf +++ b/etc/resolv.conf @@ -1,4 +1,5 @@ options timeout:2 options edns0 search slackware.uk.internal slackware.uk.net -nameserver 5.101.171.215 +nameserver 10.254.0.215 +#nameserver 5.101.171.215 diff --git a/etc/samba/smb.conf b/etc/samba/smb.conf index 8ac1999..3dd9bbf 100644 --- a/etc/samba/smb.conf +++ b/etc/samba/smb.conf @@ -1,12 +1,14 @@ [global] realm = DIRECTORY.SLACKWARE.UK.INTERNAL -netbios name = CORE +netbios name = DIRECTORY workgroup = SLACKWAREUKINT server string = "directory.slackware.uk.internal Domain Controller" +bind interfaces only = yes +interfaces = lo eth1 # FIXME: # dns forwarder = 5.101.171.216 5.101.171.217 185.176.90.169 dns forwarder = 216.119.155.58 185.176.90.169 -allow dns updates = no +allow dns updates = secure tls cafile = /etc/ssl/certs/ca-certificates.crt tls certfile = /etc/certificates/core.slackware.uk.internal_cert.pem tls keyfile = /etc/certificates/core.slackware.uk.internal_key.pem @@ -31,6 +33,8 @@ nfs4acl_xattr:xattr_name = user.nfs4_acl nfs4acl_xattr:default acl style = windows acl_xattr:security_acl_name = user.NTACL acl_xattr:default acl style = windows +add machine script = /usr/sbin/useradd -c "%u machine account" -d /dev/null -g machines -M -N -s /bin/false %u +add user script = /usr/sbin/useradd -c "%u domain user" -d /dev/null -g users -M -N -s /bin/false %u # [homes]