====== Samba 4 Active Directory Setup ======
===== named.conf =====
<file named.conf named.conf>
# This DNS configuration is for BIND 9.8.0 or later with dlz_dlopen support.
#
# This file should be included in your main BIND configuration file
#
# For example with
# include "/var/samba/lib/samba/private/named.conf";
 
#
# This configures dynamically loadable zones (DLZ) from AD schema
# Uncomment only single database line, depending on your BIND version
#
 
options {
        forwarders { 8.8.8.8; 8.8.4.4; };
        tkey-gssapi-keytab "/var/samba/lib/samba/private/dns.keytab";
};
 
dlz "AD DNS Zone" {
    # For BIND 9.8.0
    #database "dlopen /usr/lib/samba/bind9/dlz_bind9.so";
 
    # For BIND 9.9.0
    database "dlopen /usr/lib/samba/bind9/dlz_bind9_9.so";
};
</file>
===== smb.conf =====
<file samba smb.conf>
[global]
        workgroup = TESTDOM
        realm = TESTDOM.NET
        netbios name = DC01
        server role = active directory domain controller
        server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbind, ntp_signd, kcc, dnsupdate
 
[netlogon]
        path = /var/samba/lib/samba/sysvol/testdom.net/scripts
        read only = No
        browseable = No
 
[sysvol]
        path = /var/samba/lib/samba/sysvol
        read only = No
        browseable = No
 
[software]
        path = /vol1/software
        read only = No
 
[profiles]
        path = /vol1/profiles
        read only = No
        hide unreadable = Yes
 
[User Data]
        path = /vol1/userData
        read only = No
        hide unreadable = Yes
</file>
===== nsswitch.conf =====
<file config nsswitch.conf>
# /etc/nsswitch.conf
#
# Example configuration of GNU Name Service Switch functionality.
# If you have the `glibc-doc-reference' and `info' packages installed, try:
# `info libc "Name Service Switch"' for information about this file.
 
passwd:         compat winbind
group:          compat winbind
shadow:         compat
 
hosts:          files dns
networks:       files
 
protocols:      db files
services:       db files
ethers:         db files
rpc:            db files
 
netgroup:       nis
</file>