I was disappointed in the final version of NethServer 7 in regarding installing Samba Active Directory, but not anymore. The below issues are resolved as of 02-21-2017.
The beta and all of the RC’s, building a domain works perfectly and correctly but the final version it works, but it doesn’t look like it though and a brief, maybe 1/2 second of error message and goes away. And the Disaster Restore with Samba Active Directory got worse; in fact it does not work at all.
You can download the NethServer 7 Final by going to this site http://www.nethserver.org/getting-started-with-nethserver/
Note 1: Once you install a Samba Active Directory, you can’t uninstall it. Even though it you can by the removing it in the Installed in Software Center, it make a mess of the server and AD. I tried to restoring the backup but it’s still a mess.
Note 2: The Disaster Restore with Samba Active Directory is not working. I would use a virtual for NS and back up the virtual, or image for NS.
I will be using this information for my virtual NethServer using Linux VMware Workstation Player. Also VMWare should be in a root mode because adding the Samba AD is a different container and uses a promiscuous network mode.
NS Server: dc1
dc1 IP Address: 192.168.2.100
Default Gateway: 192.168.2.1
Samba AD Virtual Address: 192.168.2.101
DNS Domain Name: bales.lan
NetBIOS Domain Name: BALES
Configuring NethServer 7 Final:
After it rebooted after installing, go to the browser and put in https://your-ip:980, and log in using the root and your chosen password. However it make take a few minutes for the NS web server to be up and running though.
It shows the Welcome page and click on Next.
The next page is setting your FQDN. Either put it in or I like me put I put it in when installing NS, and then click on Next.
The time zone. Since I put my time zone when installing NS, I click on Next.
Setting up the SSH port. It’s default to 22 and since it’s only internal test server, I click on Next.
Setting it up a smarthost. I didn’t want it, so left it un-check and click on Next.
Usage statistics. By default it’s says contribute, and click on Next without changing it.
Review changes. It does not show the configuration changes though but I think it should. I did not want go back and so I clicked on Next.
After you click on Next it shows Network, showing the server IP address. Since mine is correct I didn’t need to edit it.
I want to change my Organization name, so I clicked Organization Contacts on the left and changed to my fictional name.
Then click in Shutdown on the left and reboot the server.
After it reboots login in to your NS web page and click on Software Center on left and after a few minutes it will show the updates. Click on Updates on the top right and click on Download and Install.
When it’s done downloaded and installing the updates a Reload Page will show. Click on the Reload Page and then after reboot the server again.
Configuring Samba Active Directory:
Click again on Software Center on the left and if they are more no updates, click on Samba Active Directory and File Server and then Add at the top.
Note: You can’t uninstall Active Directory after you install it. Even though it you can by the removing it in the Installed in Software Center, it make a mess of the server and AD. I tried to restoring the backup but it’s still a mess.
After click on Add is ask you to confirm the changes. Click on Apply Changes.
After installs the Samba Active Directory and File Server it goes back to the Reload Page plus Configure Samba Active Directory. I just click on Configure instead of Reload Page. If you click on Reload Page you can either click on User and Groups or Accounts Provider to get back to Configuring it.
I put in address of 192.168.2.101, BALES as the NetBIOS domain and checked “Create a bridge interface for the green network”. Click on the red ‘Start DC’ button.
It will take several minutes to completely install Samba Active Directory. When it’s done it will ask you to Enable Admin User.
Click on “Enable admin user” and to enable the Admin User is by placing a password in for the Admin user. Notice that email@example.com and firstname.lastname@example.org are locked, and you can enable one or both of them. email@example.com is in sync with newer Microsoft AD/DC that it allows with another user to be a administrator domain user and not necessarily the ‘administrator’.
Putting a password for the firstname.lastname@example.org.
After clicking on Submit it goes back the Users/Groups page, showing unlocked email@example.com.
Just for fun create a new user by clicking on Create New. I named mine after me, jbales. Note: Even though it shows the domain groups of admin and administrator, it says nothing for each addition user even though are part of the Domain Users.
After clicking on Submit it show the unlocked firstname.lastname@example.org, locked email@example.com and unlocked firstname.lastname@example.org.
Creating a simple File Share:
Go to the Shared Folders on the left and click on it. It will show you an empty table with a Create New button.
Click on Create New and make a ‘docs’ shared folder with Domain Users can read and write to it.
‘docs’ shared folder after clicking on Submit.
Testing the domain user and shared folders with Windows 10 Pro:
It works for a domain user jbales and the ‘docs’ shared folder. He can read, write and delete from the ‘docs’ folder.
But he and no one else can read the netlogon and the sysvol folder at he IP address of the Samba Active Directory server, including the admin and the administrator. But I think it’s issue directly from Samba and not NethServer.