網上有很多複雜的安裝配置,可以通過CentOS加入Windows DC域腳本簡單的加入域,最終需根據自身環境特點定製,否則直接copy使用將報錯。
本腳本簡單修改域相關信息即可使用。
#!/bin/bash #========================================================================== # File: DCJoin.sh # # DESCRIPTION: This script is used to install usual samba winbind, # join in DC # # Author: zouquehui # Create: 2013-09-10 # Revision: 1.0 #========================================================================== yum install samba pam_krb5 mv /etc/samba/smb.conf /etc/samba/smb.conf.orig cat > /etc/samba/smb.conf << EOFI #域配置 [global] workgroup = XX password server = sz01dc01.corp.xx #域服務器 realm = CORP.XX #域 security = ads #域級別 idmap config * : range = 16777216-33554431 template shell = /bin/bash winbind use default domain = false winbind offline logon = false server string = Samba Server Version %v log file = /var/log/samba/log.%m max log size = 50 load printers = no EOFI cat > /etc/resolv.conf << EOFI options single-request nameserver 192.168.8.1 #域的DNS nameserver 192.168.8.2 EOFI cat >> /etc/sudoers << EOF "%XX\SZ Domain Admins" ALL=(ALL) ALL #域權限控制 "%XX\SZ KVM Admins" ALL=(ALL) ALL EOF authconfig --updateall --enablewinbind --enablewinbindauth --enablewinbindusedefaultdomain #開啓域驗證 service winbind stop net join -U [email protected] #加入域 service winbind start authconfig --enablemkhomedir --update #域用戶第一次登入,創建域用戶的家目錄