8月 19, 2017
raspberrypi2がFSMO、1台目の設定
1,2共に同じ
GNU nano 2.2.6 File: /etc/krb5.conf
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
default_realm = HIGHSPEC.ORG
dns_lookup_realm = false
dns_lookup_kdc = true
[realms]
HIGHSPEC.ORG = {
kdc = raspberrypi2.highspec.org
admin_server = raspberrypi2.highspec.org
}
[domain_realm]
.highspec.org = HIGHSPEC.ORG
highspec.org = HIGHSPEC.ORG
2
GNU nano 2.2.6 File: /opt/samba/etc/smb.conf
# Global parameters
[global]
netbios name = RASPBERRYPI2
realm = HIGHSPEC.ORG
server services = rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns, smb
workgroup = HIGHSPEC
dns forwarder = 192.168.0.1
dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr, netlogon, lsarpc, drsuapi, dssetup, unixinfo, browser, eventlog6, backup$
server role = active directory domain controller
idmap_ldb:use rfc2307 = yes
[netlogon]
path = /opt/samba/var/locks/sysvol/highspec.org/scripts
read only = No
[sysvol]
path = /opt/samba/var/locks/sysvol
read only = No
1
GNU nano 2.2.6 File: /opt/samba/etc/smb.conf
# Global parameters
[global]
netbios name = RASPBERRYPI1
realm = HIGHSPEC.ORG
workgroup = HIGHSPEC
server role = active directory domain controller
dns forwarder = 192.168.0.1
[netlogon]
path = /opt/samba/var/locks/sysvol/highspec.org/scripts
read only = No
[sysvol]
path = /opt/samba/var/locks/sysvol
read only = No
2
nterface eth0
static ip_address=192.168.0.21/24
static routers=192.168.0.1
static domain_name_servers=192.168.0.20 192.168.0.21
static domain_search=highspec.org
static domain_name=highspec.org
1
interface eth0
static ip_address=192.168.0.20/24
static routers=192.168.0.1
static domain_name_servers=192.168.0.21 192.168.0.20
static domain_search=highspec.org
static domain_name=highspec.org
2
GNU nano 2.2.6 File: /etc/hosts
127.0.0.1 localhost.highspec.org localhost
::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
192.168.0.21 raspberrypi2.highspec.org raspberrypi2
1
GNU nano 2.2.6 File: /etc/hosts
127.0.0.1 localhost.highspec.org localhost
::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
192.168.0.20 raspberrypi1.highspec.org raspberrypi1
1,2共に
GNU nano 2.2.6 File: /etc/modules
# /etc/modules: kernel modules to load at boot time.
#
# This file contains the names of kernel modules that should be loaded
# at boot time, one per line. Lines beginning with "#" are ignored.
ipv6
# Global parameters
[global]
dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr, netlogon, lsarpc, drsuapi, dssetup, unixinfo, browser, eventlog6, backupkey, dnsserver, winreg, srvsvc
dns forwarder = 192.168.0.1
netbios name = RASPBERRYPI1
realm = HIGHSPEC.ORG
server role = active directory domain controller
server services = rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns, smb
workgroup = HIGHSPEC
idmap_ldb:use rfc2307 = yes
[netlogon]
path = /opt/samba/var/locks/sysvol/highspec.org/scripts
read only = No
[sysvol]
path = /opt/samba/var/locks/sysvol
read only = No
/opt/samba/etc/smb.conf (END)
# Global parameters
[global]
dns forwarder = 192.168.0.1
netbios name = RASPBERRYPI2
realm = HIGHSPEC.ORG
server role = active directory domain controller
workgroup = HIGHSPEC
[netlogon]
path = /opt/samba/var/locks/sysvol/highspec.org/scripts
read only = No
[sysvol]
path = /opt/samba/var/locks/sysvol
read only = No
(END)
root@raspberrypi2:/opt/samba/etc# pstree
systemd─┬─2*[agetty]
├─cron
├─dbus-daemon
├─dhcpcd
├─ntpd
├─rsyslogd─┬─{in:imklog}
│ ├─{in:imuxsock}
│ └─{rs:main Q:Reg}
├─samba─┬─12*[samba]
│ └─samba───winbindd───winbindd
├─sshd───sshd───sshd───bash───su───bash───pstree
├─systemd-journal
├─systemd-logind
├─systemd-udevd
├─thd
└─xinetd
root@raspberrypi1:/opt/samba/etc# pstree
systemd─┬─agetty
├─cron
├─dbus-daemon
├─dhcpcd
├─ntpd
├─rsyslogd─┬─{in:imklog}
│ ├─{in:imuxsock}
│ └─{rs:main Q:Reg}
├─samba─┬─samba───smbd─┬─cleanupd
│ │ ├─lpqd
│ │ └─smbd-notifyd
│ ├─10*[samba]
│ ├─samba───winbindd───winbindd
│ └─samba───2*[python]
├─sshd───sshd───sshd───bash───su───bash───pstree
├─systemd-journal
├─systemd-logind
├─systemd-udevd
└─thd
root@raspberrypi2:/opt/samba/etc# service samba-ad-dc status
● samba-ad-dc.service - LSB: start Samba daemons for the AD DC
Loaded: loaded (/etc/init.d/samba-ad-dc)
Active: active (running) since 土 2017-08-19 18:58:24 JST; 1h 25min ago
Process: 2672 ExecStop=/etc/init.d/samba-ad-dc stop (code=exited, status=0/SUCCESS)
Process: 2682 ExecStart=/etc/init.d/samba-ad-dc start (code=exited, status=0/SUCCESS)
CGroup: /system.slice/samba-ad-dc.service
├─2691 /opt/samba/sbin/samba -D
├─2692 /opt/samba/sbin/samba -D
├─2693 /opt/samba/sbin/samba -D
├─2694 /opt/samba/sbin/samba -D
├─2695 /opt/samba/sbin/samba -D
├─2696 /opt/samba/sbin/samba -D
├─2697 /opt/samba/sbin/samba -D
├─2698 /opt/samba/sbin/samba -D
├─2699 /opt/samba/sbin/samba -D
├─2700 /opt/samba/sbin/samba -D
├─2701 /opt/samba/sbin/samba -D
├─2702 /opt/samba/sbin/winbindd -D --option=server role check:inhibit=yes --foreground
├─2703 /opt/samba/sbin/samba -D
├─2704 /opt/samba/sbin/samba -D
├─2705 /opt/samba/sbin/samba -D
└─2711 /opt/samba/sbin/winbindd -D --option=server role check:inhibit=yes --foreground
8月 19 19:28:06 raspberrypi2 samba[2796]: [2017/08/19 19:28:06.404163, 0] ../source4/smb_server/smb2/sesssetup.c:242(smb2srv_cl...ructor)
8月 19 19:28:06 raspberrypi2 samba[2796]: free session[0x55e3eee8]
8月 19 19:40:12 raspberrypi2 samba[2820]: [2017/08/19 19:40:12.400668, 0] ../source4/smb_server/smb2/sesssetup.c:242(smb2srv_cl...ructor)
8月 19 19:40:12 raspberrypi2 samba[2820]: free session[0x55e3eee8]
8月 19 19:52:24 raspberrypi2 samba[2839]: [2017/08/19 19:52:24.391006, 0] ../source4/smb_server/smb2/sesssetup.c:242(smb2srv_cl...ructor)
8月 19 19:52:24 raspberrypi2 samba[2839]: free session[0x55e3eee8]
8月 19 20:04:30 raspberrypi2 samba[2892]: [2017/08/19 20:04:30.372169, 0] ../source4/smb_server/smb2/sesssetup.c:242(smb2srv_cl...ructor)
8月 19 20:04:30 raspberrypi2 samba[2892]: free session[0x55e3eee8]
8月 19 20:16:42 raspberrypi2 samba[2926]: [2017/08/19 20:16:42.361856, 0] ../source4/smb_server/smb2/sesssetup.c:242(smb2srv_cl...ructor)
8月 19 20:16:42 raspberrypi2 samba[2926]: free session[0x55e3eee8]
Hint: Some lines were ellipsized, use -l to show in full.
root@raspberrypi1:/opt/samba/etc# service samba-ad-dc status
● samba-ad-dc.service - LSB: start Samba daemons for the AD DC
Loaded: loaded (/etc/init.d/samba-ad-dc)
Active: active (running) since 土 2017-08-19 20:10:15 JST; 13min ago
Process: 3446 ExecStop=/etc/init.d/samba-ad-dc stop (code=exited, status=0/SUCCESS)
Process: 3456 ExecStart=/etc/init.d/samba-ad-dc start (code=exited, status=0/SUCCESS)
CGroup: /system.slice/samba-ad-dc.service
├─3465 /opt/samba/sbin/samba -D
├─3466 /opt/samba/sbin/samba -D
├─3467 /opt/samba/sbin/samba -D
├─3468 /opt/samba/sbin/smbd -D --option=server role check:inhibit=yes --foreground
├─3469 /opt/samba/sbin/samba -D
├─3470 /opt/samba/sbin/samba -D
├─3471 /opt/samba/sbin/samba -D
├─3472 /opt/samba/sbin/samba -D
├─3473 /opt/samba/sbin/samba -D
├─3474 /opt/samba/sbin/samba -D
├─3475 /opt/samba/sbin/samba -D
├─3476 /opt/samba/sbin/samba -D
├─3477 /opt/samba/sbin/samba -D
├─3478 /opt/samba/sbin/samba -D
├─3479 /opt/samba/sbin/samba -D
├─3480 /opt/samba/sbin/winbindd -D --option=server role check:inhibit=yes --foreground
├─3484 /opt/samba/sbin/smbd -D --option=server role check:inhibit=yes --foreground
├─3486 /opt/samba/sbin/smbd -D --option=server role check:inhibit=yes --foreground
├─3489 /opt/samba/sbin/winbindd -D --option=server role check:inhibit=yes --foreground
└─3490 /opt/samba/sbin/smbd -D --option=server role check:inhibit=yes --foreground
8月 19 20:10:17 raspberrypi1 samba[3465]: [2017/08/19 20:10:17.076682, 0] ../source4/smbd/server.c:487(binary_smbd_main)
8月 19 20:10:17 raspberrypi1 samba[3465]: samba: using 'standard' process model
8月 19 20:10:17 raspberrypi1 samba[3465]: [2017/08/19 20:10:17.168526, 0] ../lib/util/become_daemon.c:124(daemon_ready)
8月 19 20:10:17 raspberrypi1 samba[3465]: STATUS=daemon 'samba' finished starting up and ready to serve connections
8月 19 20:10:17 raspberrypi1 winbindd[3480]: [2017/08/19 20:10:17.510942, 0] ../source3/winbindd/winbindd_cache.c:317...cache)
8月 19 20:10:17 raspberrypi1 winbindd[3480]: initialize_winbindd_cache: clearing cache and re-creating with version number 2
8月 19 20:10:18 raspberrypi1 winbindd[3480]: [2017/08/19 20:10:18.886633, 0] ../lib/util/become_daemon.c:124(daemon_ready)
8月 19 20:10:18 raspberrypi1 winbindd[3480]: STATUS=daemon 'winbindd' finished starting up and ready to serve connections
8月 19 20:10:18 raspberrypi1 smbd[3468]: [2017/08/19 20:10:18.978784, 0] ../lib/util/become_daemon.c:124(daemon_ready)
8月 19 20:10:18 raspberrypi1 smbd[3468]: STATUS=daemon 'smbd' finished starting up and ready to serve connections
Hint: Some lines were ellipsized, use -l to show in full.
root@raspberrypi2:/opt/samba/etc# samba-tool drs showrepl
Default-First-Site-Name\RASPBERRYPI2
DSA Options: 0x00000001
DSA object GUID: 83d5465a-5868-4d58-8b07-b0608eac17f7
DSA invocationId: 996613d6-1b04-4529-a3a6-d78d3c77e895
==== INBOUND NEIGHBORS ====
DC=ForestDnsZones,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ Sat Aug 19 20:23:42 2017 JST was successful
0 consecutive failure(s).
Last success @ Sat Aug 19 20:23:42 2017 JST
DC=DomainDnsZones,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ Sat Aug 19 20:23:42 2017 JST was successful
0 consecutive failure(s).
Last success @ Sat Aug 19 20:23:42 2017 JST
DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ Sat Aug 19 20:23:43 2017 JST was successful
0 consecutive failure(s).
Last success @ Sat Aug 19 20:23:43 2017 JST
CN=Schema,CN=Configuration,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ Sat Aug 19 20:23:44 2017 JST was successful
0 consecutive failure(s).
Last success @ Sat Aug 19 20:23:44 2017 JST
CN=Configuration,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ Sat Aug 19 20:23:45 2017 JST was successful
0 consecutive failure(s).
Last success @ Sat Aug 19 20:23:45 2017 JST
==== OUTBOUND NEIGHBORS ====
DC=ForestDnsZones,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=DomainDnsZones,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Schema,CN=Configuration,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Configuration,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
==== KCC CONNECTION OBJECTS ====
Connection --
Connection name: 2e25c83c-96ea-4c5e-ba0c-2252a11f8d46
Enabled : TRUE
Server DNS name : raspberrypi1.highspec.org
Server DN name : CN=NTDS Settings,CN=RASPBERRYPI1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=highspec,DC=org
TransportType: RPC
options: 0x00000001
Warning: No NC replicated for Connection!
root@raspberrypi2:/opt/samba/etc# ldbsearch -H /opt/samba/private/sam.ldb '(invocationId=*)' --cross-ncs objectguid
# record 1
dn: CN=NTDS Settings,CN=RASPBERRYPI1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=highspec,DC=org
objectGUID: 813430b0-ba62-41a5-b766-b15f93c60640
# record 2
dn: CN=NTDS Settings,CN=RASPBERRYPI2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=highspec,DC=org
objectGUID: 83d5465a-5868-4d58-8b07-b0608eac17f7
# returned 2 records
# 2 entries
# 0 referrals
1,2共に同じ
GNU nano 2.2.6 File: /etc/krb5.conf
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
default_realm = HIGHSPEC.ORG
dns_lookup_realm = false
dns_lookup_kdc = true
[realms]
HIGHSPEC.ORG = {
kdc = raspberrypi2.highspec.org
admin_server = raspberrypi2.highspec.org
}
[domain_realm]
.highspec.org = HIGHSPEC.ORG
highspec.org = HIGHSPEC.ORG
2
GNU nano 2.2.6 File: /opt/samba/etc/smb.conf
# Global parameters
[global]
netbios name = RASPBERRYPI2
realm = HIGHSPEC.ORG
server services = rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns, smb
workgroup = HIGHSPEC
dns forwarder = 192.168.0.1
dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr, netlogon, lsarpc, drsuapi, dssetup, unixinfo, browser, eventlog6, backup$
server role = active directory domain controller
idmap_ldb:use rfc2307 = yes
[netlogon]
path = /opt/samba/var/locks/sysvol/highspec.org/scripts
read only = No
[sysvol]
path = /opt/samba/var/locks/sysvol
read only = No
1
GNU nano 2.2.6 File: /opt/samba/etc/smb.conf
# Global parameters
[global]
netbios name = RASPBERRYPI1
realm = HIGHSPEC.ORG
workgroup = HIGHSPEC
server role = active directory domain controller
dns forwarder = 192.168.0.1
[netlogon]
path = /opt/samba/var/locks/sysvol/highspec.org/scripts
read only = No
[sysvol]
path = /opt/samba/var/locks/sysvol
read only = No
2
nterface eth0
static ip_address=192.168.0.21/24
static routers=192.168.0.1
static domain_name_servers=192.168.0.20 192.168.0.21
static domain_search=highspec.org
static domain_name=highspec.org
1
interface eth0
static ip_address=192.168.0.20/24
static routers=192.168.0.1
static domain_name_servers=192.168.0.21 192.168.0.20
static domain_search=highspec.org
static domain_name=highspec.org
2
GNU nano 2.2.6 File: /etc/hosts
127.0.0.1 localhost.highspec.org localhost
::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
192.168.0.21 raspberrypi2.highspec.org raspberrypi2
1
GNU nano 2.2.6 File: /etc/hosts
127.0.0.1 localhost.highspec.org localhost
::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
192.168.0.20 raspberrypi1.highspec.org raspberrypi1
1,2共に
GNU nano 2.2.6 File: /etc/modules
# /etc/modules: kernel modules to load at boot time.
#
# This file contains the names of kernel modules that should be loaded
# at boot time, one per line. Lines beginning with "#" are ignored.
ipv6
# Global parameters
[global]
dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr, netlogon, lsarpc, drsuapi, dssetup, unixinfo, browser, eventlog6, backupkey, dnsserver, winreg, srvsvc
dns forwarder = 192.168.0.1
netbios name = RASPBERRYPI1
realm = HIGHSPEC.ORG
server role = active directory domain controller
server services = rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns, smb
workgroup = HIGHSPEC
idmap_ldb:use rfc2307 = yes
[netlogon]
path = /opt/samba/var/locks/sysvol/highspec.org/scripts
read only = No
[sysvol]
path = /opt/samba/var/locks/sysvol
read only = No
/opt/samba/etc/smb.conf (END)
# Global parameters
[global]
dns forwarder = 192.168.0.1
netbios name = RASPBERRYPI2
realm = HIGHSPEC.ORG
server role = active directory domain controller
workgroup = HIGHSPEC
[netlogon]
path = /opt/samba/var/locks/sysvol/highspec.org/scripts
read only = No
[sysvol]
path = /opt/samba/var/locks/sysvol
read only = No
(END)
root@raspberrypi2:/opt/samba/etc# pstree
systemd─┬─2*[agetty]
├─cron
├─dbus-daemon
├─dhcpcd
├─ntpd
├─rsyslogd─┬─{in:imklog}
│ ├─{in:imuxsock}
│ └─{rs:main Q:Reg}
├─samba─┬─12*[samba]
│ └─samba───winbindd───winbindd
├─sshd───sshd───sshd───bash───su───bash───pstree
├─systemd-journal
├─systemd-logind
├─systemd-udevd
├─thd
└─xinetd
root@raspberrypi1:/opt/samba/etc# pstree
systemd─┬─agetty
├─cron
├─dbus-daemon
├─dhcpcd
├─ntpd
├─rsyslogd─┬─{in:imklog}
│ ├─{in:imuxsock}
│ └─{rs:main Q:Reg}
├─samba─┬─samba───smbd─┬─cleanupd
│ │ ├─lpqd
│ │ └─smbd-notifyd
│ ├─10*[samba]
│ ├─samba───winbindd───winbindd
│ └─samba───2*[python]
├─sshd───sshd───sshd───bash───su───bash───pstree
├─systemd-journal
├─systemd-logind
├─systemd-udevd
└─thd
root@raspberrypi2:/opt/samba/etc# service samba-ad-dc status
● samba-ad-dc.service - LSB: start Samba daemons for the AD DC
Loaded: loaded (/etc/init.d/samba-ad-dc)
Active: active (running) since 土 2017-08-19 18:58:24 JST; 1h 25min ago
Process: 2672 ExecStop=/etc/init.d/samba-ad-dc stop (code=exited, status=0/SUCCESS)
Process: 2682 ExecStart=/etc/init.d/samba-ad-dc start (code=exited, status=0/SUCCESS)
CGroup: /system.slice/samba-ad-dc.service
├─2691 /opt/samba/sbin/samba -D
├─2692 /opt/samba/sbin/samba -D
├─2693 /opt/samba/sbin/samba -D
├─2694 /opt/samba/sbin/samba -D
├─2695 /opt/samba/sbin/samba -D
├─2696 /opt/samba/sbin/samba -D
├─2697 /opt/samba/sbin/samba -D
├─2698 /opt/samba/sbin/samba -D
├─2699 /opt/samba/sbin/samba -D
├─2700 /opt/samba/sbin/samba -D
├─2701 /opt/samba/sbin/samba -D
├─2702 /opt/samba/sbin/winbindd -D --option=server role check:inhibit=yes --foreground
├─2703 /opt/samba/sbin/samba -D
├─2704 /opt/samba/sbin/samba -D
├─2705 /opt/samba/sbin/samba -D
└─2711 /opt/samba/sbin/winbindd -D --option=server role check:inhibit=yes --foreground
8月 19 19:28:06 raspberrypi2 samba[2796]: [2017/08/19 19:28:06.404163, 0] ../source4/smb_server/smb2/sesssetup.c:242(smb2srv_cl...ructor)
8月 19 19:28:06 raspberrypi2 samba[2796]: free session[0x55e3eee8]
8月 19 19:40:12 raspberrypi2 samba[2820]: [2017/08/19 19:40:12.400668, 0] ../source4/smb_server/smb2/sesssetup.c:242(smb2srv_cl...ructor)
8月 19 19:40:12 raspberrypi2 samba[2820]: free session[0x55e3eee8]
8月 19 19:52:24 raspberrypi2 samba[2839]: [2017/08/19 19:52:24.391006, 0] ../source4/smb_server/smb2/sesssetup.c:242(smb2srv_cl...ructor)
8月 19 19:52:24 raspberrypi2 samba[2839]: free session[0x55e3eee8]
8月 19 20:04:30 raspberrypi2 samba[2892]: [2017/08/19 20:04:30.372169, 0] ../source4/smb_server/smb2/sesssetup.c:242(smb2srv_cl...ructor)
8月 19 20:04:30 raspberrypi2 samba[2892]: free session[0x55e3eee8]
8月 19 20:16:42 raspberrypi2 samba[2926]: [2017/08/19 20:16:42.361856, 0] ../source4/smb_server/smb2/sesssetup.c:242(smb2srv_cl...ructor)
8月 19 20:16:42 raspberrypi2 samba[2926]: free session[0x55e3eee8]
Hint: Some lines were ellipsized, use -l to show in full.
root@raspberrypi1:/opt/samba/etc# service samba-ad-dc status
● samba-ad-dc.service - LSB: start Samba daemons for the AD DC
Loaded: loaded (/etc/init.d/samba-ad-dc)
Active: active (running) since 土 2017-08-19 20:10:15 JST; 13min ago
Process: 3446 ExecStop=/etc/init.d/samba-ad-dc stop (code=exited, status=0/SUCCESS)
Process: 3456 ExecStart=/etc/init.d/samba-ad-dc start (code=exited, status=0/SUCCESS)
CGroup: /system.slice/samba-ad-dc.service
├─3465 /opt/samba/sbin/samba -D
├─3466 /opt/samba/sbin/samba -D
├─3467 /opt/samba/sbin/samba -D
├─3468 /opt/samba/sbin/smbd -D --option=server role check:inhibit=yes --foreground
├─3469 /opt/samba/sbin/samba -D
├─3470 /opt/samba/sbin/samba -D
├─3471 /opt/samba/sbin/samba -D
├─3472 /opt/samba/sbin/samba -D
├─3473 /opt/samba/sbin/samba -D
├─3474 /opt/samba/sbin/samba -D
├─3475 /opt/samba/sbin/samba -D
├─3476 /opt/samba/sbin/samba -D
├─3477 /opt/samba/sbin/samba -D
├─3478 /opt/samba/sbin/samba -D
├─3479 /opt/samba/sbin/samba -D
├─3480 /opt/samba/sbin/winbindd -D --option=server role check:inhibit=yes --foreground
├─3484 /opt/samba/sbin/smbd -D --option=server role check:inhibit=yes --foreground
├─3486 /opt/samba/sbin/smbd -D --option=server role check:inhibit=yes --foreground
├─3489 /opt/samba/sbin/winbindd -D --option=server role check:inhibit=yes --foreground
└─3490 /opt/samba/sbin/smbd -D --option=server role check:inhibit=yes --foreground
8月 19 20:10:17 raspberrypi1 samba[3465]: [2017/08/19 20:10:17.076682, 0] ../source4/smbd/server.c:487(binary_smbd_main)
8月 19 20:10:17 raspberrypi1 samba[3465]: samba: using 'standard' process model
8月 19 20:10:17 raspberrypi1 samba[3465]: [2017/08/19 20:10:17.168526, 0] ../lib/util/become_daemon.c:124(daemon_ready)
8月 19 20:10:17 raspberrypi1 samba[3465]: STATUS=daemon 'samba' finished starting up and ready to serve connections
8月 19 20:10:17 raspberrypi1 winbindd[3480]: [2017/08/19 20:10:17.510942, 0] ../source3/winbindd/winbindd_cache.c:317...cache)
8月 19 20:10:17 raspberrypi1 winbindd[3480]: initialize_winbindd_cache: clearing cache and re-creating with version number 2
8月 19 20:10:18 raspberrypi1 winbindd[3480]: [2017/08/19 20:10:18.886633, 0] ../lib/util/become_daemon.c:124(daemon_ready)
8月 19 20:10:18 raspberrypi1 winbindd[3480]: STATUS=daemon 'winbindd' finished starting up and ready to serve connections
8月 19 20:10:18 raspberrypi1 smbd[3468]: [2017/08/19 20:10:18.978784, 0] ../lib/util/become_daemon.c:124(daemon_ready)
8月 19 20:10:18 raspberrypi1 smbd[3468]: STATUS=daemon 'smbd' finished starting up and ready to serve connections
Hint: Some lines were ellipsized, use -l to show in full.
root@raspberrypi2:/opt/samba/etc# samba-tool drs showrepl
Default-First-Site-Name\RASPBERRYPI2
DSA Options: 0x00000001
DSA object GUID: 83d5465a-5868-4d58-8b07-b0608eac17f7
DSA invocationId: 996613d6-1b04-4529-a3a6-d78d3c77e895
==== INBOUND NEIGHBORS ====
DC=ForestDnsZones,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ Sat Aug 19 20:23:42 2017 JST was successful
0 consecutive failure(s).
Last success @ Sat Aug 19 20:23:42 2017 JST
DC=DomainDnsZones,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ Sat Aug 19 20:23:42 2017 JST was successful
0 consecutive failure(s).
Last success @ Sat Aug 19 20:23:42 2017 JST
DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ Sat Aug 19 20:23:43 2017 JST was successful
0 consecutive failure(s).
Last success @ Sat Aug 19 20:23:43 2017 JST
CN=Schema,CN=Configuration,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ Sat Aug 19 20:23:44 2017 JST was successful
0 consecutive failure(s).
Last success @ Sat Aug 19 20:23:44 2017 JST
CN=Configuration,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ Sat Aug 19 20:23:45 2017 JST was successful
0 consecutive failure(s).
Last success @ Sat Aug 19 20:23:45 2017 JST
==== OUTBOUND NEIGHBORS ====
DC=ForestDnsZones,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=DomainDnsZones,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Schema,CN=Configuration,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Configuration,DC=highspec,DC=org
Default-First-Site-Name\RASPBERRYPI1 via RPC
DSA object GUID: 813430b0-ba62-41a5-b766-b15f93c60640
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
==== KCC CONNECTION OBJECTS ====
Connection --
Connection name: 2e25c83c-96ea-4c5e-ba0c-2252a11f8d46
Enabled : TRUE
Server DNS name : raspberrypi1.highspec.org
Server DN name : CN=NTDS Settings,CN=RASPBERRYPI1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=highspec,DC=org
TransportType: RPC
options: 0x00000001
Warning: No NC replicated for Connection!
root@raspberrypi2:/opt/samba/etc# ldbsearch -H /opt/samba/private/sam.ldb '(invocationId=*)' --cross-ncs objectguid
# record 1
dn: CN=NTDS Settings,CN=RASPBERRYPI1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=highspec,DC=org
objectGUID: 813430b0-ba62-41a5-b766-b15f93c60640
# record 2
dn: CN=NTDS Settings,CN=RASPBERRYPI2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=highspec,DC=org
objectGUID: 83d5465a-5868-4d58-8b07-b0608eac17f7
# returned 2 records
# 2 entries
# 0 referrals
