samba-tool

samba-tool module [options]

domain join
    Joins a machine to an Active Directory domain.

domain provision
    Provisions a new Active Directory domain.

user create
    Creates a new Samba user.

user delete
    Deletes a Samba user.

group addmembers
    Adds members to a Samba group.

group removemembers
    Removes members from a Samba group.

dns
    Provides tools for managing DNS records within Samba's integrated DNS server.

dbcheck
    Checks the integrity of the Samba databases.

testparm
    Examine and test the Samba configuration file smb.conf for correctness

--help
    Displays help information about the command or a specific module.

The `samba-tool` command is a powerful administration tool for Samba, the open-source implementation of the Server Message Block (SMB)/Common Internet File System (CIFS) protocol. It allows administrators to manage various aspects of Samba, including domain management (joining domains, creating users and groups, managing Group Policy), DNS settings, Kerberos authentication, and general troubleshooting.

It's particularly useful in Active Directory environments where Samba acts as a domain member server or domain controller. `samba-tool` provides a command-line interface to many of the functionalities previously accessible only through GUI tools or complex configuration file edits, simplifying Samba administration. This utility greatly aids in tasks like creating shares, managing user permissions, and performing backups.

Proper Kerberos configuration is often crucial for `samba-tool` to function correctly, especially when interacting with an Active Directory domain. Incorrect DNS settings can also lead to unexpected behavior. Always backup your Samba configuration before making significant changes.

Many `samba-tool` operations require proper authentication. Typically, you will need to execute commands with sufficient privileges (e.g., as root) or specify credentials using command-line options. Incorrect authentication can lead to permission denied errors.

When troubleshooting issues with `samba-tool`, check the Samba logs for detailed error messages. Common problems include DNS resolution failures, Kerberos authentication errors, and database corruption.

The `samba-tool` command was developed as part of the Samba project to provide a more streamlined and centralized administration interface. Older Samba versions often required manual editing of configuration files and reliance on other command-line utilities. `samba-tool` aimed to simplify common administration tasks, especially with the increasing popularity of Samba as an Active Directory domain controller or member server. Over time, the functionality of `samba-tool` has expanded to encompass more and more aspects of Samba management.

smb.conf(5), net(8), wbinfo(1)