[root@centos7 ~]# cat /etc/redhat-release CentOS Linux release 7.6.1810 (Core) [root@centos7 ~]# kinit administrator Password for administrator@TEST.JP: Warning: Your password will expire in 41 days on 2019年08月14日 11時12分29秒 [root@centos7 ~]# /usr/local/samba/bin/samba-tool user add chibi Note: samba-tool user add is deprecated. Please use samba-tool user create for the same function. New Password: Retype Password: User 'chibi' created successfully [root@centos7 ~]# /usr/local/samba/bin/samba-tool user list Guest krbtgt chibi Administrator [root@centos7 ~]# /usr/local/samba/bin/samba-tool domain level show Domain and forest function level for domain 'DC=test,DC=jp' Forest function level: (Windows) 2008 R2 Domain function level: (Windows) 2008 R2 Lowest function level of a DC: (Windows) 2008 R2 [root@centos7 ~]# /usr/local/samba/bin/samba-tool fsmo show SchemaMasterRole owner: CN=NTDS Settings,CN=CENTOS7,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=test,DC=jp InfrastructureMasterRole owner: CN=NTDS Settings,CN=CENTOS7,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=test,DC=jp RidAllocationMasterRole owner: CN=NTDS Settings,CN=CENTOS7,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=test,DC=jp PdcEmulationMasterRole owner: CN=NTDS Settings,CN=CENTOS7,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=test,DC=jp DomainNamingMasterRole owner: CN=NTDS Settings,CN=CENTOS7,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=test,DC=jp DomainDnsZonesMasterRole owner: CN=NTDS Settings,CN=CENTOS7,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=test,DC=jp ForestDnsZonesMasterRole owner: CN=NTDS Settings,CN=CENTOS7,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=test,DC=jp [root@centos7 ~]# /usr/local/samba/bin/samba-tool fsmo transfer --role=all This DC already has the 'rid' FSMO role This DC already has the 'pdc' FSMO role This DC already has the 'naming' FSMO role This DC already has the 'infrastructure' FSMO role This DC already has the 'schema' FSMO role This DC already has the 'domaindns' FSMO role This DC already has the 'forestdns' FSMO role [root@centos7 ~]# /usr/local/samba/bin/smbclient -L localhost -U% Sharename Type Comment --------- ---- ------- netlogon Disk sysvol Disk IPC$ IPC IPC Service (Samba 4.10.5) Reconnecting with SMB1 for workgroup listing. Server Comment --------- ------- Workgroup Master --------- ------- [root@centos7 ~]# smbclient //localhost/netlogon -Uadministrator Enter SAMBA\administrator's password: Try "help" to get a list of possible commands. smb: \> ls . D 0 Wed Jul 3 11:12:24 2019 .. D 0 Wed Jul 3 11:12:29 2019 20960256 blocks of size 1024. 15567328 blocks available smb: \> exit [root@centos7 ~]# smbclient //localhost/sysvol -Uadministrator Enter SAMBA\administrator's password: Try "help" to get a list of possible commands. smb: \> ls . D 0 Wed Jul 3 11:12:29 2019 .. D 0 Wed Jul 3 11:16:53 2019 test.jp D 0 Wed Jul 3 11:12:29 2019 20960256 blocks of size 1024. 15567372 blocks available smb: \> exit [root@centos7 ~]# klist Ticket cache: FILE:/tmp/krb5cc_0 Default principal: administrator@TEST.JP Valid starting Expires Service principal 2019-07-03T11:20:54 2019-07-03T21:20:54 krbtgt/TEST.JP@TEST.JP renew until 2019-07-04T11:20:50 [root@centos7 ~]# cat /etc/redhat-release CentOS Linux release 7.6.1810 (Core) [root@centos7 ~]# /usr/local/samba/sbin/samba -V Version 4.10.5 [root@centos7 ~]# host -4 centos7 centos7.test.jp has address 192.168.1.8 centos7.test.jp has IPv6 address 2400:4052:46e0:b700:a114:b4b3:f7d8:3725 [root@centos7 ~]# host -t SRV _ldap._tcp.test.jp _ldap._tcp.test.jp has SRV record 0 100 389 centos7.test.jp. [root@centos7 ~]# host -t SRV _kerberos._udp.test.jp _kerberos._udp.test.jp has SRV record 0 100 88 centos7.test.jp. [root@centos7 ~]# host -t A centos7.test.jp. centos7.test.jp has address 192.168.1.8 [root@centos7 ~]# dig test.jp ; <<>> DiG 9.9.4-RedHat-9.9.4-74.el7_6.1 <<>> test.jp ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 53275 ;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;test.jp. IN A ;; ANSWER SECTION: test.jp. 900 IN A 192.168.1.8 ;; AUTHORITY SECTION: test.jp. 3600 IN SOA centos7.test.jp. hostmaster.test.jp. 1 900 600 86400 3600 ;; Query time: 1 msec ;; SERVER: 192.168.1.8#53(192.168.1.8) ;; WHEN: 水 7月 03 11:29:59 JST 2019 ;; MSG SIZE rcvd: 96 [root@centos7 ~]#