Jochen Scheib

Read more posts by this author.

1 min read

Install debian-chroot spk from SynoCommunity

Mount partitions with user_xattr therefore add this to /etc/rc.local

mount -o remount,user_xattr /  
mount -o remount,user_xattr /volume1 

Chroot:

chroot /volume1/@appstore/debian-chroot/var/chroottarget/ /bin/bash  

Install git and dependencies (see here):

apt-get install build-essential libacl1-dev libattr1-dev  
   libblkid-dev libgnutls-dev libreadline-dev python-dev 
   python-dnspython gdb pkg-config libpopt-dev libldap2-dev 
   dnsutils libbsd-dev attr krb5-user git

Install Samba (takes some time) (more):

cd  
git clone git://git.samba.org/samba.git samba-master  
cd samba-master  
./configure
make  
make install  

Konfigure bind9

Provision Samba4

/usr/local/samba/bin/samba-tool domain provision --host-name=majestix --realm=gallien.jochen-scheib.de --domain=GALLIEN --adminpass='testtest1234!' --server-role=dc --use-ntvfs --host-ip=192.168.80.201 --dns-backend=BIND9_FLATFILE

Edit the /usr/local/samba/etc/smb.conf

# Global parameters

[global]
    workgroup = GALLIEN
    realm = gallien.jochen-scheib.de
    netbios name = MAJESTIX
    server role = active directory domain controller
    interfaces = 192.168.80.201
    bind interfaces only = yes
    server services = rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbind, ntp_signd, kcc, dnsupdate, smb
    dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr, netlogon, lsarpc, spoolss, drsuapi, dssetup, unixinfo, browser, eventlog6, backupkey, dnsserver, winreg, srvsvc
    posix:eadb = /usr/local/samba/private/eadb.tdb



[netlogon]
    path = /usr/local/samba/var/locks/sysvol/gallien.jochen-scheib.de/scripts
    read only = No

[sysvol]
    path = /usr/local/samba/var/locks/sysvol
    read only = No

Copy Kerberos config to /etc

cp /usr/local/samba/private/krb5.conf /etc/  

Make sure to configure DNS on Router:

hostname gallien.jochen-scheib.de 192.168.80.200
dns forwarding /gallien.jochen-scheib.de/192.168.80.200

TODO:

Roaming
Check which services are really needed
Add samba4 AD to synology directory client| working more or less