@diegoviane2
Hi Diego
You can add a NethServer to a Windows Server based AD - if it’s on level 2008 R2, perfect!
I have not done this myself, as all my clients do not use Windows AD, but NethServer AD…
When NethServer is added as AD Server to your AD, you can remove the Windows AD, and “promote” your NethServer to Primary.
You will need to make sure that stuff like SysVol, User Profiles and Shares are correctly transfered, or at least available.
These may help:
https://wiki.nethserver.org/doku.php?id=howto:add_ns7_samba_domain_controller_to_existing_active_directory
Installation guide NethServer
Samba 4 AD server role
V 0.1 - initial version
V 0.2 - automated NSDC container cert renewal
V 0.21- added note about installing nano instead of vi
This manual explains how to boot the NethServer installation ISO and install NethServer with the Samba4 AD role. No special attention will be given to disk-layout or backup strategies. A vitual environment is assumed. If you will install NethServer on bare metal, you will need to rethink partitioning and backup st…
Just configured roaming profiles with Nethserver:
Login as root into SSH, enter following command (substitute with your domain):
mkdir /var/lib/nethserver/profiles
chown "administrator@<domain>" /var/lib/nethserver/profiles
chgrp "domain admins@<domain>" /var/lib/nethserver/profiles
chmod 777 /var/lib/nethserver/profiles
(I don’t like giving full access to “others”, but it does not work without this. If anyony knows how this could be avoided, please tell me so)
mkdir -p /etc/e-smith/templat…
NethServer Version: 7.4
Module: Samba 4.4.4 AD
Need to be able to call exe files from an ibay on Windows clients…
Is this code safe to try?
"mkdir -p /etc/e-smith/templates-custom/etc/samba/smb.conf/
vi /etc/e-smith/templates-custom/etc/samba/smb.conf/11globalexecfix
Paste the smb settings and save the file:
# Allow Windows machines to execute things that don't have
# the execute bit set
`acl allow execute always = True"`
The way I read the effect of this it opens all ibays to code execu…
There are more Docs about this - but as said, it’s not official… It does work, though…
This tool may help with Windows Profiles:
Do make regular backups until the whole server / AD is migrated.
Good Luck!
My 2 cents
4 Likes
