samba-tool
Manage Active Directory via Samba
SYNOPSIS
samba-tool module [options]
PARAMETERS
domain join
Joins a machine to an Active Directory domain.
domain provision
Provisions a new Active Directory domain.
user create
Creates a new Samba user.
user delete
Deletes a Samba user.
group addmembers
Adds members to a Samba group.
group removemembers
Removes members from a Samba group.
dns
Provides tools for managing DNS records within Samba's integrated DNS server.
dbcheck
Checks the integrity of the Samba databases.
testparm
Examine and test the Samba configuration file smb.conf for correctness
--help
Displays help information about the command or a specific module.
DESCRIPTION
The `samba-tool` command is a powerful administration tool for Samba, the open-source implementation of the Server Message Block (SMB)/Common Internet File System (CIFS) protocol. It allows administrators to manage various aspects of Samba, including domain management (joining domains, creating users and groups, managing Group Policy), DNS settings, Kerberos authentication, and general troubleshooting.
It's particularly useful in Active Directory environments where Samba acts as a domain member server or domain controller. `samba-tool` provides a command-line interface to many of the functionalities previously accessible only through GUI tools or complex configuration file edits, simplifying Samba administration. This utility greatly aids in tasks like creating shares, managing user permissions, and performing backups.
CAVEATS
Proper Kerberos configuration is often crucial for `samba-tool` to function correctly, especially when interacting with an Active Directory domain. Incorrect DNS settings can also lead to unexpected behavior. Always backup your Samba configuration before making significant changes.
AUTHENTICATION
Many `samba-tool` operations require proper authentication. Typically, you will need to execute commands with sufficient privileges (e.g., as root) or specify credentials using command-line options. Incorrect authentication can lead to permission denied errors.
TROUBLESHOOTING
When troubleshooting issues with `samba-tool`, check the Samba logs for detailed error messages. Common problems include DNS resolution failures, Kerberos authentication errors, and database corruption.
HISTORY
The `samba-tool` command was developed as part of the Samba project to provide a more streamlined and centralized administration interface. Older Samba versions often required manual editing of configuration files and reliance on other command-line utilities. `samba-tool` aimed to simplify common administration tasks, especially with the increasing popularity of Samba as an Active Directory domain controller or member server. Over time, the functionality of `samba-tool` has expanded to encompass more and more aspects of Samba management.