0% found this document useful (0 votes)

9 views5 pages

comandos parte2

The document provides a detailed guide for adding a machine to a domain using Samba and configuring various services including Squid, Apache, Postfix, and Dovecot. It includes specific configuration settings for Samba, user and group management, and authentication methods. Additionally, it outlines the installation and setup of necessary packages and services to ensure proper functionality within the domain environment.

Uploaded by

said

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

9 views5 pages

comandos parte2

Uploaded by

said

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

You are on page 1/ 5

adicionar a maquina no dominio

vi /etc/samba/smb.conf
[global]
workgroup = CERTIFICACAO
map to guest = Bad User
include = /etc/samba/dhcp.conf
logon path = \\%L\profiles\.msprofile
logon home = \\%L\%U\.9xprofile
logon drive = P:
usershare allow guests = No
idmap gid = 10000-20000
idmap uid = 10000-20000
realm = CERTIFICACAO.COM
security = ADS
template homedir = /home/%D/%U
template shell = /bin/bash
winbind offline logon = yes
winbind refresh tickets = yes
password server = 10.211.55.13
winbind separator = + # some applications get confused with \
winbind enum users = yes
winbind enum groups = yes
winbind nested groups = Yes
winbind use default domain = yes
encrypt passwords = yes
socket options = TCP_NODELAY SO_RCVBUF=16384 SO_SNDBUF=16384
log level = 3 passdb:5 auth:3 winbind:3
[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes

klist
net ads join -Uadministrator
net rpc join -Uadministrator
net ads testjoin -Uadministrator
net ads keytab list -Uadministrator
net rpc trustdom list -Uadministrator
net ads user -U administrator
net ads group -U administrator
wbinfo -a administrator%1eimg2eimm!
wbinfo -D certificacao
wbinfo -t
wbinfo -i administrator
wbinfo -u
wbinfo -g

groupadd squid
useradd -g squid -d /var/cache/squid -s /bin/false squid
chown root:squid /var/lib/samba/winbindd_privileged
chmod 750 /var/lib/samba/winbindd_privileged

yast2 -i findutils readline glibc-devel findutils-locate gcc flex lynx compat-

readline4 db-devel wget gcc-c++ subversion make
wget http://www.squid-cache.org/Versions/v3/3.3/squid-3.3.3-20130314-r12516.tar.gz
tar xvzf squid-3.3.3-20130314-r12516.tar.gz
./configure --prefix=/usr/local/squid
make
make install

chown -R squid:squid /usr/local/squid

chmod 770 /usr/local/squid
cd /usr/local/squid
chown -R squid:squid *

vi /usr/local/squid/etc/squid.conf

cache_effective_user squid
cache_effective_group squid

visible_hostname linux-jw8v.certificacao.com

# para autenticacao basica

auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 5
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes

auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic

auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 5 hours

acl NTLMUsers proxy_auth REQUIRED

http_access allow all NTLMUsers

#para autenticacao por grupo

auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 5

auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic

auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 5 hours

external_acl_type wbinfo_check %LOGIN /usr/local/squid/lib/ext_wbinfo_group_acl

acl allowed_group external wbinfo_check AcessoTotal

http_access allow allowed_group

acl sites_liberados url_regex -i "/usr/local/squid/etc/sites_liberados"

http_access allow sites_liberados

#
# apache
#

a2enmod authnz_ldap
a2enmod ldap

mkdir /srv/www/htdocs/secreto

rcapache restart

vi /etc/apache2/httpd.conf

Options Indexes FollowSymLinks MultiViews

AllowOverride None
Order allow,deny
allow from all
AuthType Basic
AuthName "Acesso Restrito"
AuthBasicProvider ldap
AuthzLDAPAuthoritative off
AuthLDAPURL "ldap://10.211.55.13:389/ou=rede,dc=certificacao,dc=com?
sAMAccountName?sub?(objectClass=*)" NONE
AuthLDAPBindDN "cn=Administrator,cn=Users,dc=certificacao,dc=com"
AuthLDAPBindPassword "1eimg2eimm!"
Require valid-user # Use essa diretiva para habilitar todos os
usu�rios da "OU" ou do "DC"

#
# postfix
#

sudo apt-get install postfix postfix-ldap dovecot-common dovecot-imapd dovecot-

pop3d dovecot-ldap

sudo useradd vmail -s /bin/false -d /home/vmail

sudo chown -R vmail:vmail /home/vmail

sudo chmod -R 700 /home/vmail

vi ldap-users.cf
server_host = 10.211.55.13
search_base = dc=certificacao,dc=com
version = 3
query_filter = (&(objectclass=person)(samaccountname=%s))
result_attribute = samaccountname
result_format = %u/Maildir/
bind = yes
bind_dn = [email protected]
bind_pw = 1eimg2eimm!

vi /etc/postfix/main.cf
smtpd_banner = $myhostname ESMTP $mail_name (GNU)
biff = no

# appending .domain is the MUA's job.

append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = no

# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for

# information on enabling SSL in the smtp client.

alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = certificacao.com, localhost.localdomain, localhost
home_mailbox = Maildir/
relayhost =
mynetworks = 127.0.0.0/8 ,10.0.0.0/16
mailbox_command = procmail -a "$EXTENSION"
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all

virtual_mailbox_domains = ubuntu.certificacao.com
virtual_mailbox_base = /home/vmail/
virtual_mailbox_maps = ldap:/etc/postfix/ldap-users.cf
virtual_uid_maps = static:1001 # Aqui coloca-se o valor do uid do usuario vmail
virtual_gid_maps = static:1001 # Aqui coloca-se o valor do gid do usuario vmail

smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
smtpd_sasl_auth_enable = yes
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_destination
broken_sasl_auth_clients = yes

vi /etc/dovecot/dovecot.conf
mail_location = maildir:/home/vmail/%u/Maildir/
mail_privileged_group = mail
mail_debug = no
valid_chroot_dirs = /home/vmail
maildir_copy_with_hardlinks = yes
protocol imap {
mail_plugin_dir = /usr/lib/dovecot/modules/imap
imap_client_workarounds = delay-newmail outlook-idle netscape-eoh
}
protocol pop3 {
pop3_uidl_format = %08Xu%08Xv
mail_plugin_dir = /usr/lib/dovecot/modules/pop3
pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
}
protocol managesieve {
sieve=~/.dovecot.sieve
sieve_storage=~/sieve
}

auth_username_format = %Lu
auth_debug = no
auth default {
mechanisms = plain login
socket listen {
client {
path = /var/spool/postfix/private/auth
mode = 0660
user = postfix
group = postfix
}
}
passdb ldap {
args = /etc/dovecot/dovecot-ldap.conf
}
userdb static {
args = uid=1001 gid=1001 home=/home/vmail/%u
}

socket listen {
master {
path = /var/run/dovecot/auth-master
mode = 0600
user = vmail
group = vmail
}
client {
path = /var/run/dovecot/auth-client
mode = 0660
}
}

vi dovecot-ldap.conf
hosts = 10.211.55.13
base = dc=certificacao,dc=com
ldap_version = 3
auth_bind = yes
auth_bind_userdn = certificacao\%u

sudo service postfix restart

sudo service dovecot restart

The Modern Information Environment PDF
No ratings yet
The Modern Information Environment PDF
62 pages
Samba+Postfix With Ldap Server
No ratings yet
Samba+Postfix With Ldap Server
11 pages
Openldap + Samba Domain Controller: Preface
No ratings yet
Openldap + Samba Domain Controller: Preface
12 pages
samba_ldap
No ratings yet
samba_ldap
8 pages
Samba LDAP PDC Complete Tutorial
No ratings yet
Samba LDAP PDC Complete Tutorial
11 pages
comandos parte1
No ratings yet
comandos parte1
2 pages
How To Set Up Open Ldap On Ubuntu 11
No ratings yet
How To Set Up Open Ldap On Ubuntu 11
4 pages
Installing Postfix - Clamav - Spamassassin - Dovecot - Postfixadmin On Debian Squeeze
100% (1)
Installing Postfix - Clamav - Spamassassin - Dovecot - Postfixadmin On Debian Squeeze
20 pages
BSD Guides: Doing Stuff With FreeBSD, NetBSD, OpenBSD, & Mac OS X
No ratings yet
BSD Guides: Doing Stuff With FreeBSD, NetBSD, OpenBSD, & Mac OS X
9 pages
Configuration of a Simple Samba File Server, Quota and Schedule Backup
From Everand
Configuration of a Simple Samba File Server, Quota and Schedule Backup
Dr. Hedaya Alasooly
No ratings yet
Adjust /etc/hosts: Server1 127.0.0.1
No ratings yet
Adjust /etc/hosts: Server1 127.0.0.1
11 pages
Configure A FreeBSD Email Server Using Postfix
100% (1)
Configure A FreeBSD Email Server Using Postfix
45 pages
Manual para Configurar Un Servidor Ldap
No ratings yet
Manual para Configurar Un Servidor Ldap
22 pages
Ldap With Replication
No ratings yet
Ldap With Replication
12 pages
Linux Server Installation Configuration Manual
No ratings yet
Linux Server Installation Configuration Manual
32 pages
Expand IDS Company's Network: I. Problems
No ratings yet
Expand IDS Company's Network: I. Problems
8 pages
Authenticating Windows To OpenLDAP Server On Ubuntu 9
No ratings yet
Authenticating Windows To OpenLDAP Server On Ubuntu 9
17 pages
Secure Webmail: Sending Mail Using Stunnel, Mail Submission Port and
No ratings yet
Secure Webmail: Sending Mail Using Stunnel, Mail Submission Port and
103 pages
Mail Server Installation and Configuration
100% (1)
Mail Server Installation and Configuration
34 pages
Virtualization Poll: Virtual Users and Domains With Postfix, Courier, ..
No ratings yet
Virtualization Poll: Virtual Users and Domains With Postfix, Courier, ..
13 pages
WWW Server-World
No ratings yet
WWW Server-World
2 pages
Linux Mail Server Setup and Howto Guide
No ratings yet
Linux Mail Server Setup and Howto Guide
20 pages
Nicholas SNA Individual (Almost Done)
No ratings yet
Nicholas SNA Individual (Almost Done)
64 pages
Setting Up of LDAP Server in Ubuntu 16.04
100% (1)
Setting Up of LDAP Server in Ubuntu 16.04
23 pages
CYBR 4220 SELF-services Checklist for Server Check #1 v9
No ratings yet
CYBR 4220 SELF-services Checklist for Server Check #1 v9
13 pages
Tutorial Email Service
No ratings yet
Tutorial Email Service
10 pages
Build A Samba PDC With LDAP Backend - BSD Guides
No ratings yet
Build A Samba PDC With LDAP Backend - BSD Guides
11 pages
Postfix, Dovecot, ViMbAdmin, RoundCube en Ubuntu para Correosvirtuales (Nginx) PDF
No ratings yet
Postfix, Dovecot, ViMbAdmin, RoundCube en Ubuntu para Correosvirtuales (Nginx) PDF
12 pages
Multi-Master Replication of OpenLDAP Server On CentOS 6.4
No ratings yet
Multi-Master Replication of OpenLDAP Server On CentOS 6.4
5 pages
Examen A2 MDB Post Bind
No ratings yet
Examen A2 MDB Post Bind
14 pages
AG Dovecot IMAP-POP3 Server Configuration
No ratings yet
AG Dovecot IMAP-POP3 Server Configuration
3 pages
Virtual Hosting Howto With Virtual Min On CentOS 5.1
No ratings yet
Virtual Hosting Howto With Virtual Min On CentOS 5.1
43 pages
Configuring A Squid Server To Authenticate Off Active Directory
No ratings yet
Configuring A Squid Server To Authenticate Off Active Directory
6 pages
Script Ultimate Rhcsa Training
No ratings yet
Script Ultimate Rhcsa Training
4 pages
Qmail With Ldap: Download Directory
No ratings yet
Qmail With Ldap: Download Directory
12 pages
Mail Server
No ratings yet
Mail Server
32 pages
Postfixadmin 3.0: Mailserver Administration Made Easy
No ratings yet
Postfixadmin 3.0: Mailserver Administration Made Easy
22 pages
Ldap Configuration With Tls
No ratings yet
Ldap Configuration With Tls
5 pages
LAB 3 Messagerie
No ratings yet
LAB 3 Messagerie
10 pages
Lesson 23 - Linux Mail Server With Webmail
No ratings yet
Lesson 23 - Linux Mail Server With Webmail
5 pages
Step by Step OpenLDAP Server Configuration On CentOS 7
No ratings yet
Step by Step OpenLDAP Server Configuration On CentOS 7
5 pages
CentOS Postfix Dovecot Ipv4
No ratings yet
CentOS Postfix Dovecot Ipv4
9 pages
ESTUDO DE CASO
No ratings yet
ESTUDO DE CASO
75 pages
The Perfect Server Debian 3
No ratings yet
The Perfect Server Debian 3
6 pages
389 Directory Server
No ratings yet
389 Directory Server
24 pages
Configuration of a Simple Samba File Server, Quota and Schedule Backup
From Everand
Configuration of a Simple Samba File Server, Quota and Schedule Backup
Dr. Hidaia Mahmood Alassouli
No ratings yet
Dovecot
No ratings yet
Dovecot
2 pages
Mail Server With Postfix & Dovecot
No ratings yet
Mail Server With Postfix & Dovecot
2 pages
Ldap Documentation 2021.8
No ratings yet
Ldap Documentation 2021.8
7 pages
Esa Cli
No ratings yet
Esa Cli
2 pages
Linuxdays 2005, Samba Tutorial: Alain Knaff
No ratings yet
Linuxdays 2005, Samba Tutorial: Alain Knaff
45 pages
Instalacion y Configuracion Del Servidor de Correo Seguro Con Mandriva Directory Server
No ratings yet
Instalacion y Configuracion Del Servidor de Correo Seguro Con Mandriva Directory Server
37 pages
LDAP
No ratings yet
LDAP
5 pages
Mail Scanner - Community Ubuntu Documentation
No ratings yet
Mail Scanner - Community Ubuntu Documentation
4 pages
Deploy Secure Postfix Messaging Server With OpenLDAP For Addressbook & Identity Management v1.1
100% (1)
Deploy Secure Postfix Messaging Server With OpenLDAP For Addressbook & Identity Management v1.1
15 pages
samba-setup
No ratings yet
samba-setup
7 pages
How To Install Zimbra 8 (UBUNTU-SERVER)
No ratings yet
How To Install Zimbra 8 (UBUNTU-SERVER)
7 pages
HOWTO Virtual Mail Hosting CentOS 6 - Postfix Postfixadmin Webmail
No ratings yet
HOWTO Virtual Mail Hosting CentOS 6 - Postfix Postfixadmin Webmail
16 pages
Instalacion y Configuracion DNS Con Webmin
No ratings yet
Instalacion y Configuracion DNS Con Webmin
22 pages
Debian Server Configuration Guide
No ratings yet
Debian Server Configuration Guide
6 pages
VPS Server Setup
From Everand
VPS Server Setup
L Mohan Arun
5/5 (1)
Wubie Engdew Hailu
No ratings yet
Wubie Engdew Hailu
89 pages
Before The Hon'Ble Supreme Court of Zindia
0% (1)
Before The Hon'Ble Supreme Court of Zindia
31 pages
Unit 12
No ratings yet
Unit 12
22 pages
Government of Pakistan: Model Customs Collectorate Office of The Deputy Collector of Customs, Kict West Wharf
No ratings yet
Government of Pakistan: Model Customs Collectorate Office of The Deputy Collector of Customs, Kict West Wharf
37 pages
יובל זבנוביץ - בגרויות2
No ratings yet
יובל זבנוביץ - בגרויות2
7 pages
Ranjaitha Presentati
No ratings yet
Ranjaitha Presentati
18 pages
Reliability Analysis For Repairable v1.9
100% (1)
Reliability Analysis For Repairable v1.9
266 pages
Otp Validation: Project Report On
100% (1)
Otp Validation: Project Report On
10 pages
Audio Tech
No ratings yet
Audio Tech
52 pages
Design Boundaries For Metro Rail Project
No ratings yet
Design Boundaries For Metro Rail Project
3 pages
Deepfakes and The New Disinformation War
No ratings yet
Deepfakes and The New Disinformation War
10 pages
TECHNOPRENEURSHIP-TEMPLATE
No ratings yet
TECHNOPRENEURSHIP-TEMPLATE
5 pages
NDC Industrial Brochure
No ratings yet
NDC Industrial Brochure
16 pages
Users Manual: Thermocouple Calibrator
No ratings yet
Users Manual: Thermocouple Calibrator
40 pages
00 - MS - Fire Alarm System Installation
No ratings yet
00 - MS - Fire Alarm System Installation
10 pages
Summative Test 1 in General Mathematics
No ratings yet
Summative Test 1 in General Mathematics
2 pages
Baris Tekdemir CV_202_mart
No ratings yet
Baris Tekdemir CV_202_mart
2 pages
(Humastar 100)
No ratings yet
(Humastar 100)
6 pages
Ruhi Data Visul Basic
No ratings yet
Ruhi Data Visul Basic
53 pages
Catalogue - Water Meter Ultrasonic Modbus SAITEC
No ratings yet
Catalogue - Water Meter Ultrasonic Modbus SAITEC
2 pages
The Digitally Savvy CFO: Executive Summary
No ratings yet
The Digitally Savvy CFO: Executive Summary
7 pages
PI Metal Detector Hammerhead PDF
100% (1)
PI Metal Detector Hammerhead PDF
15 pages
Harsh Chaudhary: 2018UME1704@mnit - Ac.in
No ratings yet
Harsh Chaudhary: 2018UME1704@mnit - Ac.in
1 page
Chapter 8 Solution Ncert Ip Class 11-1
No ratings yet
Chapter 8 Solution Ncert Ip Class 11-1
11 pages
CNN Slides KD
No ratings yet
CNN Slides KD
25 pages
Saral 300: Compact, Accurate and Reliable
0% (1)
Saral 300: Compact, Accurate and Reliable
2 pages
Fraction and Division
No ratings yet
Fraction and Division
17 pages
Singer 38413016300
No ratings yet
Singer 38413016300
87 pages
Siemens Probing
No ratings yet
Siemens Probing
573 pages

comandos parte2

Uploaded by

comandos parte2

Uploaded by

adicionar a maquina no dominio

yast2 -i findutils readline glibc-devel findutils-locate gcc flex lynx compat-

chown -R squid:squid /usr/local/squid

# para autenticacao basica

auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic

acl NTLMUsers proxy_auth REQUIRED

#para autenticacao por grupo

auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic

external_acl_type wbinfo_check %LOGIN /usr/local/squid/lib/ext_wbinfo_group_acl

http_access allow allowed_group

acl sites_liberados url_regex -i "/usr/local/squid/etc/sites_liberados"

http_access allow sites_liberados

Options Indexes FollowSymLinks MultiViews

sudo apt-get install postfix postfix-ldap dovecot-common dovecot-imapd dovecot-

sudo useradd vmail -s /bin/false -d /home/vmail

sudo chown -R vmail:vmail /home/vmail

# appending .domain is the MUA's job.

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for

sudo service postfix restart

You might also like