Ferramentas do usuário
infra-estrutura:linux:samba:gerenciamento_samba_cli
Essa é uma revisão anterior do documento!
Tabela de conteúdos
Gerenciamento do SAMBA via CLI
Para todos os exemplos utilizaremos o nome de dominio ricardobarbosams.com.br e usuário ricardobarbosa e grupo g_ti
Criação de usuário
# samba-tool user add ricardobarbosa --given-name=Ricardo --surname=barbosa --mail-address=ricardobarbosa@ricardobarbosams.com.br --login-shell=/bin/bash
Listar usuários
# samba-tool user list
Excluir um usuário
# samba-tool user delete ricardobarbosa
Reseta a senha do usuário do dominio
# samba-tool user setpassword ricardobarbosa
Desativar o usuário
# samba-tool user disable ricardobarbosa
Ativando o usuário
# samba-tool user enable ricardobarbosa
Criando grupo de usuários
# samba-tool group add g_ti
Excluindo grupo de usuários
# samba-tool group delete g_ti
Listando grupos de usuários
# samba-tool group list
Listando usuários membros do grupo
# samba-tool group listmembers "g_ti"
Adicionando usuários a determinado grupo
# samba-tool group addmembers g_ti ricardobarbosa
Removendo usuários de determinado grupo
samba-tool group remove members g_ti ricardobarbosa
===== Visualizando politicas de senha do samba(Active Directory)
# samba-tool domain passwordsettings show
# samba-tool domain passwordsettings set --complexity=off
# samba-tool domain passwordsettings set --history-length=0 # samba-tool domain passwordsettings set --min-pwd-age=0 # samba-tool domain passwordsettings set --max-pwd-age=0 # samba-tool domain passwordsettings set --min-pwd-length=4
Verificar registro da zone DNS do AD
samba-tool dns query agamenon _msdcs.freewaynet.corp @ ALL -U administrator --password=123456 Password for [FREEWAYNET\administrator]: Name=, Records=2, Children=0 SOA: serial=109, refresh=900, retry=600, expire=86400, minttl=3600, ns=agamenon.freewaynet.corp., email=hostmaster.freewaynet.corp. (flags=600000f0, serial=109, ttl=3600) NS: agamenon.freewaynet.corp. (flags=600000f0, serial=1, ttl=900) Name=3f8e7991-853a-41c1-854b-2dc24cf51667, Records=1, Children=0 CNAME: agamenon.freewaynet.corp. (flags=f0, serial=1, ttl=900) Name=dc, Records=0, Children=2 Name=domains, Records=0, Children=1 Name=gc, Records=0, Children=2 Name=pdc, Records=0, Children=1 root@agamenon:~#
root@agamenon:~# samba-tool dns query agamenon _msdcs.freewaynet.corp domains._msdcs.freewaynet.corp ALL -U administrator --password=123456 Name=, Records=0, Children=0 Name=9ab474e0-d6c2-431d-a769-c44ba1f20818, Records=0, Children=1 root@agamenon:~#
samba-tool dns query agamenon _msdcs.freewaynet.corp 9ab474e0-d6c2-431d-a769-c44ba1f20818.domains._msdcs.freewaynet.corp ALL -U administrator --password=123456 Name=, Records=0, Children=0 Name=_tcp, Records=0, Children=1 <code> <code bash> root@agamenon:~# samba-tool dns query agamenon _msdcs.freewaynet.corp _tcp.9ab474e0-d6c2-431d-a769-c44ba1f20818.domains._msdcs.freewaynet.corp ALL -U administrator --password=123456 Name=, Records=0, Children=0 Name=_ldap, Records=1, Children=0 SRV: agamenon.freewaynet.corp. (389, 0, 100) (flags=f0, serial=1, ttl=900) root@agamenon:~#
root@agamenon:~# samba-tool dns query agamenon _msdcs.freewaynet.corp _ldap._tcp.9ab474e0-d6c2-431d-a769-c44ba1f20818.domains._msdcs.freewaynet.corp ALL -U administrator --password=123456 Name=, Records=1, Children=0 SRV: agamenon.freewaynet.corp. (389, 0, 100) (flags=f0, serial=1, ttl=900) root@agamenon:~#