Arch Linux Samba4.13.3 AMD EPYC 7302P 16-core Processorで構築した Windows Server 2019 Datacenter Active Directory Domain のメンバーに参加してみた

[root@archlinux ~]# kinit administrator
Password for administrator@TEST.JP:
[root@archlinux ~]# net ads join -U administrator
Enter administrator’s password:
Using short domain name — TEST
Joined ‘ARCHLINUX’ to dns domain ‘test.jp’
No DNS domain configured for archlinux. Unable to perform DNS Update.
DNS update failed: NT_STATUS_INVALID_PARAMETER
[root@archlinux ~]# systemctl restart winbind
[root@archlinux ~]# wbinfo -u
TEST\administrator
TEST\guest
TEST\krbtgt
TEST\chibi
[root@archlinux ~]# wbinfo -n chibi
S-1-5-21-995094434-2370853644-3769685270-1103 SID_USER (1)
[root@archlinux ~]# net ads lookup
Information for Domain Controller: 192.168.1.28

Response Type: LOGON_SAM_LOGON_RESPONSE_EX
GUID: c8e0ec6a-8685-4987-934d-94b20f0e089e
Flags:
Is a PDC: yes
Is a GC of the forest: yes
Is an LDAP server: yes
Supports DS: yes
Is running a KDC: yes
Is running time services: yes
Is the closest DC: yes
Is writable: yes
Has a hardware clock: yes
Is a non-domain NC serviced by LDAP server: no
Is NT6 DC that has some secrets: no
Is NT6 DC that has all secrets: yes
Runs Active Directory Web Services: yes
Runs on Windows 2012 or later: yes
Forest: test.jp
Domain: test.jp
Domain Controller: dc.test.jp
Pre-Win2k Domain: TEST
Pre-Win2k Hostname: DC
Server Site Name: Default-First-Site-Name
Client Site Name: Default-First-Site-Name
NT Version: 5
LMNT Token: ffff
LM20 Token: ffff
[root@archlinux ~]# dig test.jp

; <<>> DiG 9.16.10 <<>> test.jp
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 51087 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4000 ;; QUESTION SECTION: ;test.jp. IN A ;; ANSWER SECTION: test.jp. 600 IN A 192.168.1.25 test.jp. 600 IN A 192.168.1.22 test.jp. 600 IN A 192.168.1.28 test.jp. 600 IN A 192.168.1.27 ;; Query time: 3 msec ;; SERVER: 192.168.1.22#53(192.168.1.22) ;; WHEN: Thu Jan 07 07:56:31 JST 2021 ;; MSG SIZE rcvd: 100 [root@archlinux ~]# klist Ticket cache: FILE:/tmp/krb5cc_0 Default principal: administrator@TEST.JP Valid starting Expires Service principal 01/07/2021 07:55:01 01/07/2021 17:55:01 krbtgt/TEST.JP@TEST.JP renew until 01/08/2021 07:54:56 [root@archlinux ~]# wbinfo -t checking the trust secret for domain TEST via RPC calls succeeded [root@archlinux ~]# wbinfo -g TEST\domain computers TEST\domain controllers TEST\schema admins TEST\enterprise admins TEST\cert publishers TEST\domain admins TEST\domain users TEST\domain guests TEST\group policy creator owners TEST\ras and ias servers TEST\allowed rodc password replication group TEST\denied rodc password replication group TEST\read-only domain controllers TEST\enterprise read-only domain controllers TEST\cloneable domain controllers TEST\protected users TEST\key admins TEST\enterprise key admins TEST\dnsadmins TEST\dnsupdateproxy [root@archlinux ~]# smbclient //192.168.1.22/netlogon -Uadministrator Arch Linux Samba4.13.3 AMD EPYC 7302P 16-core Processorで構築した Windows Server 2019 Datacenter Active Directory Domain のメンバーに参加してみた