Join using realm.

Additional dependency samba-common-bin of realm discover -v
2022-12-12 01:00:50 +01:00
parent 411373726d
commit 86b78e7569
2 changed files with 11 additions and 8 deletions
--- a/1
+++ b/1
@@ -34,6 +34,7 @@ RUN apt-get -y update && \
        libnss-winbind \
        libpam-winbind \
        samba \
+        samba-common-bin \
        samba-dsdb-modules \
        samba-client \
        samba-vfs-modules \
--- a/entrypoint.sh
+++ b/entrypoint.sh
@@ -1,5 +1,7 @@
 #!/bin/sh -e

+# Loosely based on https://github.com/fjudith/docker-samba-join-ad/tree/master/sssd
+
 if [ -z "$NETBIOS_NAME" ]; then
  NETBIOS_NAME=$(hostname -s | tr [a-z] [A-Z])
 else
@@ -13,23 +15,27 @@ if [ ! -f /etc/timezone ] && [ ! -z "$TZ" ]; then
  echo $TZ >/etc/timezone
 fi

-if [ ! -f /var/lib/samba/registry.tdb ]; then
+echo " Starting system message bus"
+/etc/init.d/dbus start
+
+if [ ! -f /var/lib/samba/private/secrets.tdb ]; then
  if [ ! -f /run/secrets/$ADMIN_PASSWORD_SECRET ]; then
    echo 'Cannot read secret $ADMIN_PASSWORD_SECRET in /run/secrets'
    exit 1
  fi
  ADMIN_PASSWORD=$(cat /run/secrets/$ADMIN_PASSWORD_SECRET)
-  if [ "$BIND_INTERFACES_ONLY" == yes ]; then
+  if [ "$BIND_INTERFACES_ONLY" == "yes" ]; then
    INTERFACE_OPTS="--option=\"bind interfaces only=yes\" \
      --option=\"interfaces=$INTERFACES\""
  fi
  PROVISION_OPTS="$REALM MEMBER -UAdministrator --password='$ADMIN_PASSWORD'"

  rm -f /etc/samba/smb.conf /etc/krb5.conf
+  mkdir -p /var/lib/samba/private

  # This step is required for INTERFACE_OPTS to work as expected
-  echo "samba-tool domain join $PROVISION_OPTS $INTERFACE_OPTS \
-     --dns-backend=SAMBA_INTERNAL" | sh
+  #echo "samba-tool domain join $PROVISION_OPTS $INTERFACE_OPTS" | sh
+  echo $ADMIN_PASSWORD|realm join -v $REALM --user=Administrator

  mv /etc/samba/smb.conf /etc/samba/smb.conf.bak
  echo 'root = administrator' > /etc/samba/smbusers
@@ -52,10 +58,6 @@ done
 for file in $(ls -A /etc/samba/conf.d/*.conf); do
  echo "include = $file" >> /etc/samba/smb.conf
 done
-ln -fns /var/lib/samba/private/krb5.conf /etc/
-
-echo " Starting system message bus"
-/etc/init.d/dbus start

 echo "Starting: \"sssd\""
 cat /etc/sssd/sssd.conf