root@debian:~# cat /etc/os-release PRETTY_NAME="Debian GNU/Linux 10 (buster)" NAME="Debian GNU/Linux" VERSION_ID="10" VERSION="10 (buster)" VERSION_CODENAME=buster ID=debian HOME_URL="https://www.debian.org/" SUPPORT_URL="https://www.debian.org/support" BUG_REPORT_URL="https://bugs.debian.org/" root@debian:~# cat /etc/debian_version 10.0 root@debian:~# samba -V Version 4.9.5-Debian root@debian:~# kinit administrator Password for administrator@TEST.JP: Warning: Your password will expire in 41 days on 2019年08月26日 12時01分40秒 root@debian:~# net ads info LDAP server: 192.168.1.74 LDAP server name: debian.test.jp Realm: TEST.JP Bind Path: dc=TEST,dc=JP LDAP port: 389 Server time: 月, 15 7月 2019 12:07:16 JST KDC server: 192.168.1.74 Server time offset: 0 Last machine account password change: 月, 15 7月 2019 12:01:40 JST root@debian:~# samba-tool user add chibi Note: samba-tool user add is deprecated. Please use samba-tool user create for the same function. New Password: Retype Password: User 'chibi' created successfully root@debian:~# host -4 debian debian.test.jp has address 192.168.1.74 debian.test.jp has IPv6 address 2400:4052:46e0:b700:20c:29ff:febe:decd root@debian:~# host -t SRV _ldap._tcp.test.jp _ldap._tcp.test.jp has SRV record 0 100 389 debian.test.jp. root@debian:~# host -t SRV _kerberos._udp.test.jp _kerberos._udp.test.jp has SRV record 0 100 88 debian.test.jp. root@debian:~# host -t A debian.test.jp. debian.test.jp has address 192.168.1.74 root@debian:~# smbclient -L localhost -U% Sharename Type Comment --------- ---- ------- netlogon Disk sysvol Disk IPC$ IPC IPC Service (Samba 4.9.5-Debian) Reconnecting with SMB1 for workgroup listing. Server Comment --------- ------- Workgroup Master --------- ------- WORKGROUP root@debian:~# smbclient //localhost/netlogon -Uadministrator Enter TEST\administrator's password: Try "help" to get a list of possible commands. smb: \> ls . D 0 Mon Jul 15 12:01:37 2019 .. D 0 Mon Jul 15 12:01:39 2019 18447056 blocks of size 1024. 13276816 blocks available smb: \> exit root@debian:~# smbclient //localhost/sysvol -Uadministrator Enter TEST\administrator's password: Try "help" to get a list of possible commands. smb: \> ls . D 0 Mon Jul 15 12:01:40 2019 .. D 0 Mon Jul 15 12:06:33 2019 test.jp D 0 Mon Jul 15 12:01:39 2019 18447056 blocks of size 1024. 13276816 blocks available smb: \> exit root@debian:~# dig test.jp -bash: dig: コマンドが見つかりません root@debian:~# net ads lookup Information for Domain Controller: 192.168.1.74 Response Type: LOGON_SAM_LOGON_RESPONSE_EX GUID: 02cca5c5-0a09-4fd1-963b-fbfe154a3718 Flags: Is a PDC: yes Is a GC of the forest: yes Is an LDAP server: yes Supports DS: yes Is running a KDC: yes Is running time services: yes Is the closest DC: yes Is writable: yes Has a hardware clock: yes Is a non-domain NC serviced by LDAP server: no Is NT6 DC that has some secrets: no Is NT6 DC that has all secrets: yes Runs Active Directory Web Services: no Runs on Windows 2012 or later: no Forest: test.jp Domain: test.jp Domain Controller: debian.test.jp Pre-Win2k Domain: TEST Pre-Win2k Hostname: DEBIAN Server Site Name : Default-First-Site-Name Client Site Name : Default-First-Site-Name NT Version: 5 LMNT Token: ffff LM20 Token: ffff root@debian:~# wbinfo -t checking the trust secret for domain TEST via RPC calls succeeded root@debian:~# wbinfo -g TEST\cert publishers TEST\ras and ias servers TEST\allowed rodc password replication group TEST\denied rodc password replication group TEST\dnsadmins TEST\enterprise read-only domain controllers TEST\domain admins TEST\domain users TEST\domain guests TEST\domain computers TEST\domain controllers TEST\schema admins TEST\enterprise admins TEST\group policy creator owners TEST\read-only domain controllers TEST\dnsupdateproxy root@debian:~# klist Ticket cache: FILE:/tmp/krb5cc_0 Default principal: administrator@TEST.JP Valid starting Expires Service principal 2019-07-15T12:07:09 2019-07-15T22:07:09 krbtgt/TEST.JP@TEST.JP renew until 2019-07-16T12:07:04 root@debian:~#