{"id":4975,"date":"2021-03-30T03:58:35","date_gmt":"2021-03-29T18:58:35","guid":{"rendered":"https:\/\/wp.study3.biz\/?p=4975"},"modified":"2021-03-30T03:59:17","modified_gmt":"2021-03-29T18:59:17","slug":"arch-linux-samba4-13-3-amd-epyc-7302p-16-core-processor%e3%81%a7%e6%a7%8b%e7%af%89%e3%81%97%e3%81%9f-windows-server-2019-datacenter-active-directory-domain-%e3%81%ae%e3%83%a1%e3%83%b3%e3%83%90","status":"publish","type":"post","link":"https:\/\/wp.study3.biz\/?p=4975","title":{"rendered":"Arch Linux Samba4.13.3 AMD EPYC 7302P 16-core Processor\u3067\u69cb\u7bc9\u3057\u305f Windows Server 2019 Datacenter Active Directory Domain \u306e\u30e1\u30f3\u30d0\u30fc\u306b\u53c2\u52a0\u3057\u3066\u307f\u305f"},"content":{"rendered":"

\"\"
\n[root@archlinux ~]# kinit administrator
\nPassword for administrator@TEST.JP:
\n[root@archlinux ~]# net ads join -U administrator
\nEnter administrator’s password:
\nUsing short domain name — TEST
\nJoined ‘ARCHLINUX’ to dns domain ‘test.jp’
\nNo DNS domain configured for archlinux. Unable to perform DNS Update.
\nDNS update failed: NT_STATUS_INVALID_PARAMETER
\n[root@archlinux ~]# systemctl restart winbind
\n[root@archlinux ~]# wbinfo -u
\nTEST\\administrator
\nTEST\\guest
\nTEST\\krbtgt
\nTEST\\chibi
\n[root@archlinux ~]# wbinfo -n chibi
\nS-1-5-21-995094434-2370853644-3769685270-1103 SID_USER (1)
\n[root@archlinux ~]# net ads lookup
\nInformation for Domain Controller: 192.168.1.28<\/p>\n

Response Type: LOGON_SAM_LOGON_RESPONSE_EX
\nGUID: c8e0ec6a-8685-4987-934d-94b20f0e089e
\nFlags:
\n Is a PDC: yes
\n Is a GC of the forest: yes
\n Is an LDAP server: yes
\n Supports DS: yes
\n Is running a KDC: yes
\n Is running time services: yes
\n Is the closest DC: yes
\n Is writable: yes
\n Has a hardware clock: yes
\n Is a non-domain NC serviced by LDAP server: no
\n Is NT6 DC that has some secrets: no
\n Is NT6 DC that has all secrets: yes
\n Runs Active Directory Web Services: yes
\n Runs on Windows 2012 or later: yes
\nForest: test.jp
\nDomain: test.jp
\nDomain Controller: dc.test.jp
\nPre-Win2k Domain: TEST
\nPre-Win2k Hostname: DC
\nServer Site Name: Default-First-Site-Name
\nClient Site Name: Default-First-Site-Name
\nNT Version: 5
\nLMNT Token: ffff
\nLM20 Token: ffff
\n[root@archlinux ~]# dig test.jp<\/p>\n

; <<>> DiG 9.16.10 <<>> test.jp
\n;; global options: +cmd
\n;; Got answer:
\n;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 51087\n;; flags: qr aa rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version: 0, flags:; udp: 4000\n;; QUESTION SECTION:\n;test.jp. IN A\n\n;; ANSWER SECTION:\ntest.jp. 600 IN A 192.168.1.25\ntest.jp. 600 IN A 192.168.1.22\ntest.jp. 600 IN A 192.168.1.28\ntest.jp. 600 IN A 192.168.1.27\n\n;; Query time: 3 msec\n;; SERVER: 192.168.1.22#53(192.168.1.22)\n;; WHEN: Thu Jan 07 07:56:31 JST 2021\n;; MSG SIZE rcvd: 100\n\n[root@archlinux ~]# klist\nTicket cache: FILE:\/tmp\/krb5cc_0\nDefault principal: administrator@TEST.JP\n\nValid starting Expires Service principal\n01\/07\/2021 07:55:01 01\/07\/2021 17:55:01 krbtgt\/TEST.JP@TEST.JP\n renew until 01\/08\/2021 07:54:56\n[root@archlinux ~]# wbinfo -t\nchecking the trust secret for domain TEST via RPC calls succeeded\n[root@archlinux ~]# wbinfo -g\nTEST\\domain computers\nTEST\\domain controllers\nTEST\\schema admins\nTEST\\enterprise admins\nTEST\\cert publishers\nTEST\\domain admins\nTEST\\domain users\nTEST\\domain guests\nTEST\\group policy creator owners\nTEST\\ras and ias servers\nTEST\\allowed rodc password replication group\nTEST\\denied rodc password replication group\nTEST\\read-only domain controllers\nTEST\\enterprise read-only domain controllers\nTEST\\cloneable domain controllers\nTEST\\protected users\nTEST\\key admins\nTEST\\enterprise key admins\nTEST\\dnsadmins\nTEST\\dnsupdateproxy\n[root@archlinux ~]# smbclient \/\/192.168.1.22\/netlogon -Uadministrator\nArch Linux Samba4.13.3 AMD EPYC 7302P 16-core Processor\u3067\u69cb\u7bc9\u3057\u305f Windows Server 2019 Datacenter Active Directory Domain \u306e\u30e1\u30f3\u30d0\u30fc\u306b\u53c2\u52a0\u3057\u3066\u307f\u305f<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

[root@archlinux ~]# kinit administrator Password for administrator@TEST.JP: [root@archlinux ~]# net ads join – … \u7d9a\u304d\u3092\u8aad\u3080 →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[4,9,10],"tags":[],"class_list":["post-4975","post","type-post","status-publish","format-standard","hentry","category-archlinux","category-samba4","category-windows"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/posts\/4975","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4975"}],"version-history":[{"count":2,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/posts\/4975\/revisions"}],"predecessor-version":[{"id":4983,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=\/wp\/v2\/posts\/4975\/revisions\/4983"}],"wp:attachment":[{"href":"https:\/\/wp.study3.biz\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4975"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4975"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wp.study3.biz\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4975"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}