Create an Active Directory Infrastructure with Samba4 on Ubuntu – Part 1

If You Appreciate What We Do Here On TecMint, You Should Consider:

  1. Stay Connected to: Twitter | Facebook | Google Plus
  2. Subscribe to our email updates: Sign Up Now
  3. Get your own self-hosted blog with a Free Domain at ($3.95/month).
  4. Become a Supporter - Make a contribution via PayPal
  5. Support us by purchasing our premium books in PDF format.
  6. Support us by taking our online Linux courses

We are thankful for your never ending support.

Matei Cezar

I’am a computer addicted guy, a fan of open source and linux based system software, have about 4 years experience with Linux distributions desktop, servers and bash scripting.

Your name can also be listed here. Got a tip? Submit it here to become an TecMint author.

RedHat RHCE and RHCSA Certification Book
Linux Foundation LFCS and LFCE Certification Preparation Guide

You may also like...

55 Responses

  1. Wasiq says:

    Hello Mr/Mrs,

    I am trying to integrate Samba4 and OpenLdap as backend database for samba ADDC. I have followed the procedures that you provided in in this page and it work properly on Ubuntu 16.04, now I want to configure OpenLdap as backend database for samba so how can do it?

    I have to integrate them on Ubuntu 16.04 and this is part of my Bachelor Theses.

    Please help me …..

  2. Sayantan says:

    what’s the acl and xattr syntax for LVM partitioned machines?

    • Matei Cezar says:

      The syntax is the same as for any ext4 file system. It doesn’t matter if the underlying storage unit is a pure HDD partition or a LVM logical volume. As long as the file system supports ACL, the syntax is the same.

      • Wasiq says:

        First of all thanks for your guide and I need your help more…

        I am new in samba therefore I have no enough understanding of samba. if my question is not clear or understandable, please forgive me.

        The supervisor asked me to configure samba ADDC in a manner that the users accounts that we have added with phpLdapAdmin in Ldap database can authenticate against samba DC. it means that users must can login to any windows client with credentials stored in ldap data base.

        If samba4 has its own built-in ldap support, so where does the user profile will be stored? and in what format they will be stored (ldif or other)? I have HDD storage unit.

  3. vivek says:


    Its working fine for me but, when I do access from windows RSAT tools its picked up all the DNS information but when I try to create forward zone i am getting local security database in internal inconsistency error.

  4. Auto says:

    Hi! My Ubuntu 16.04 server also acts as a BIND 9 DNS and ISC DHCP server. There is st that i need to change to use it also as a Samba 4 AD domain controller with this guide?

    I know broad question, all the eggs in the same basket…sorry

  5. John Haywood says:

    $ sudo mv /etc/krb6.conf /etc/krb5.conf.initial

    should read:

    $ sudo mv /etc/krb5.conf /etc/krb5.conf.initial

  6. Prashant Deshpande says:

    Really nice blog saved lot of my RnD time.


  7. Melvin C V says:

    There is no krb6.conf for me. I did:

    mv /etc/krb5.conf /etc/krb5.conf.initial

  8. Marc Laflamme says:

    I’ve tried the process out twice already with no success. I found that the conflicting item was dnsmasq using the same port as the Samba Internal DNS Resolver. Comment out dns=dnsmasq by putting # in /etc/NetworkManager/NetworkManager.conf. All fixed.

  9. Manuel Koller says:

    Step 10: is wrong you need to use double “–“, -interactive doesnt work :b

  10. techgs says:

    Eagerly awaiting your article Part 14: Integrate Ubuntu 16.04 to Samba4 AD DC with SSSD and Realm & Part 16: Integrate VMware ESXI Host to Samba4 AD DC Infrastructure.

    Excellent piece of writing.

Got something to say? Join the discussion.

Your email address will not be published. Required fields are marked *