{"id":3758,"date":"2020-11-05T00:38:22","date_gmt":"2020-11-04T15:38:22","guid":{"rendered":"https:\/\/wp.study3.biz\/?p=3758"},"modified":"2020-11-05T00:39:01","modified_gmt":"2020-11-04T15:39:01","slug":"ubuntu-18-04-5-lts-samba4-7-6-amd-epyc%e3%81%ab%e6%a7%8b%e7%af%89%e3%81%97%e3%81%9fwindows-server-2019-datacenter-active-directory-domain-%e3%81%ae%e3%83%a1%e3%83%b3%e3%83%90%e3%83%bc%e3%81%ab","status":"publish","type":"post","link":"https:\/\/wp.study3.biz\/?p=3758","title":{"rendered":"Ubuntu 18.04.5 LTS Samba4.7.6 AMD EPYC\u306b\u69cb\u7bc9\u3057\u305fWindows Server 2019 Datacenter Active Directory Domain \u306e\u30e1\u30f3\u30d0\u30fc\u306b\u53c2\u52a0\u3057\u3066\u307f\u305f"},"content":{"rendered":"

\"\"
\nroot@1804:~# kinit administrator
\nPassword for administrator@TEST.JP:
\nroot@1804:~# net ads join -U administrator
\nEnter administrator’s password:
\nUsing short domain name — TEST
\nJoined ‘1804’ to dns domain ‘test.jp’
\nNo DNS domain configured for 1804. Unable to perform DNS Update.
\nDNS update failed: NT_STATUS_INVALID_PARAMETER
\nroot@1804:~# systemctl restart winbind
\nroot@1804:~# wbinfo -u
\nTEST\\administrator
\nTEST\\guest
\nTEST\\krbtgt
\nTEST\\chibi
\nroot@1804:~# wbinfo -n chibi
\nS-1-5-21-4252828235-1945649609-3318306072-1103 SID_USER (1)
\nroot@1804:~# net ads info
\nLDAP server: 192.168.1.28
\nLDAP server name: dc.test.jp
\nRealm: TEST.JP
\nBind Path: dc=TEST,dc=JP
\nLDAP port: 389
\nServer time: \u6728, 10 9\u6708 2020 18:47:51 JST
\nKDC server: 192.168.1.28
\nServer time offset: -3
\nLast machine account password change: \u6728, 10 9\u6708 2020 18:47:03 JST
\nroot@1804:~# host -4 dc
\ndc.test.jp has address 192.168.1.27
\ndc.test.jp has address 192.168.1.28
\ndc.test.jp has IPv6 address 2400:4052:46e0:b700:5440:7997:1f70:6066
\ndc.test.jp has IPv6 address 2400:4052:46e0:b700:5021:a5ac:5882:f185
\nroot@1804:~# host -4 dc1
\ndc1.test.jp has address 192.168.1.30
\ndc1.test.jp has IPv6 address 2400:4052:46e0:b700:79f0:d44d:dc7a:b245
\nroot@1804:~# host -4 dc2
\ndc2.test.jp has address 192.168.1.53
\ndc2.test.jp has IPv6 address 2400:4052:46e0:b700:d9fb:4f0:1b8c:d399
\nroot@1804:~# host -t A test.jp
\ntest.jp has address 192.168.1.27
\ntest.jp has address 192.168.1.30
\ntest.jp has address 192.168.1.28
\ntest.jp has address 192.168.1.53
\nroot@1804:~# cat \/etc\/os-release
\nNAME=”Ubuntu”
\nVERSION=”18.04.5 LTS (Bionic Beaver)”
\nID=ubuntu
\nID_LIKE=debian
\nPRETTY_NAME=”Ubuntu 18.04.5 LTS”
\nVERSION_ID=”18.04″
\nHOME_URL=”https:\/\/www.ubuntu.com\/”
\nSUPPORT_URL=”https:\/\/help.ubuntu.com\/”
\nBUG_REPORT_URL=”https:\/\/bugs.launchpad.net\/ubuntu\/”
\nPRIVACY_POLICY_URL=”https:\/\/www.ubuntu.com\/legal\/terms-and-policies\/privacy-policy”
\nVERSION_CODENAME=bionic
\nUBUNTU_CODENAME=bionic
\nroot@1804:~# samba -V
\nVersion 4.7.6-Ubuntu
\nroot@1804:~# net ads lookup
\nInformation for Domain Controller: 192.168.1.28<\/p>\n

Response Type: LOGON_SAM_LOGON_RESPONSE_EX
\nGUID: afb28d02-8fbc-40b1-9f73-c6d23cce32bb
\nFlags:
\n Is a PDC: yes
\n Is a GC of the forest: yes
\n Is an LDAP server: yes
\n Supports DS: yes
\n Is running a KDC: yes
\n Is running time services: yes
\n Is the closest DC: yes
\n Is writable: yes
\n Has a hardware clock: yes
\n Is a non-domain NC serviced by LDAP server: no
\n Is NT6 DC that has some secrets: no
\n Is NT6 DC that has all secrets: yes
\n Runs Active Directory Web Services: yes
\n Runs on Windows 2012 or later: yes
\nForest: test.jp
\nDomain: test.jp
\nDomain Controller: dc.test.jp
\nPre-Win2k Domain: TEST
\nPre-Win2k Hostname: DC
\nServer Site Name : Default-First-Site-Name
\nClient Site Name : Default-First-Site-Name
\nNT Version: 5
\nLMNT Token: ffff
\nLM20 Token: ffff
\nroot@1804:~# dig test.jp<\/p>\n

; <<>> DiG 9.11.3-1ubuntu1.13-Ubuntu <<>> test.jp
\n;; global options: +cmd
\n;; Got answer:
\n;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13787\n;; flags: qr aa rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version: 0, flags:; udp: 4000\n;; QUESTION SECTION:\n;test.jp. IN A\n\n;; ANSWER SECTION:\ntest.jp. 600 IN A 192.168.1.30\ntest.jp. 600 IN A 192.168.1.27\ntest.jp. 600 IN A 192.168.1.28\ntest.jp. 600 IN A 192.168.1.53\n\n;; Query time: 2 msec\n;; SERVER: 192.168.1.27#53(192.168.1.27)\n;; WHEN: Thu Sep 10 18:52:18 JST 2020\n;; MSG SIZE rcvd: 100\n\nroot@1804:~# klist\nTicket cache: FILE:\/tmp\/krb5cc_0\nDefault principal: administrator@TEST.JP\n\nValid starting Expires Service principal\n2020-09-10T18:43:27 2020-09-11T04:43:27 krbtgt\/TEST.JP@TEST.JP\n renew until 2020-09-11T18:43:22\nroot@1804:~# wbinfo -t\nchecking the trust secret for domain TEST via RPC calls succeeded\nUbuntu 18.04.5 LTS Samba4.7.6 Windows Server 2019 Datacenter Active Directory Domain \u306e\u30e1\u30f3\u30d0\u30fc\u306b\u53c2\u52a0\u3057\u3066\u307f\u305f<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

root@1804:~# kinit administrator Password for administrator@TEST.JP: root@1804:~# net ads join -U administrato … \u7d9a\u304d\u3092\u8aad\u3080 →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[9,17,10],"tags":[],"class_list":["post-3758","post","type-post","status-publish","format-standard","hentry","category-samba4","category-ubuntu","category-windows"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/posts\/3758","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3758"}],"version-history":[{"count":3,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/posts\/3758\/revisions"}],"predecessor-version":[{"id":3765,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/posts\/3758\/revisions\/3765"}],"wp:attachment":[{"href":"https:\/\/wp.study3.biz\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3758"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3758"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3758"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}