Skip to content
/ RADS Public

Rocky Active Directory Install Script to build Samba AD Servers

License

Notifications You must be signed in to change notification settings

fumatchu/RADS

Repository files navigation

(R)ocky (A)ctive (D)irectory (S)cript Builder

###############################################
RADS is SUPPORTED FOR 9.5 ON A FRESH INSTALL- AN UPGRADE IS NOT CURRENTLY SUPPORTED AND A RE-WORK IS COMING TO FIX IT
###############################################
A walk-through can also be seen here:
https://youtu.be/daaX67Ovegk

This is a script to allow a Rocky (RHEL) Server (9.x) to become an AD/DC Server from Samba Source. 
Yes, there are others that build RPMS, but why not build it yourself?
I took this approach because there is not one binary that this script modifies and therefore can be a trusted source. 


####Pre-requisites
You should install Rocky from scratch. 
You should make sure the server has a static IP (If It does not, the installer will walk you through modifying it).
You do not need to (nor should you) install anything. Just a fresh, minimal install. The installer will do the rest for you. 


The Script will do the following:
  Validate that you have a static IP setup. If you do not it will prompt you.
  Sets SElinux
  Adds Firewall allowances
  Enable the Rocky REPOS needed to build 
    EPEL
    CRB 
Install the requirements needed by the samba source
    Modify chrony to point to 2.rocky.pool.ntp.org
    Download and install (Rocky) samba-latest (.src.rpm)
    Prompt you for domain provisioning
    Add the samba service and enable it 
    Clean up all the install files (We like to be tidy)
    Provide basic AD testing from the console
      Kerberos
      Kerberos udp (NS)
      LDAP (NS
      Anonymous login
      Authenticated Login
      
    Install a monitoring script to compare the version of compiled samba to upstream and alert you if
    an updated is needed
    update the .src.rpm to latest version
    Provide you with a "next steps" for samba administration
        Suggest a reverse zone from the command line after install, based on your topology
        Provide examples for password complexity, history, etc
        Provide default user creation command to create your first AD user

####Sounds great! How do I get it?

Installing
Please see the EASY_INSTALL File 

#Installing
#Install Rocky Minimal
#https://rockylinux.org/download/
#Make sure you specify the domain name you want to use for AD.
#After the GUI install: 
#(Just copy and paste the following lines on the Rocky terminal)

cd /root/
dnf -y install wget 
wget https://raw.githubusercontent.com/fumatchu/RADS/main/DC-Installer.sh
chmod 700 ./DC-Installer.sh
/root/DC-Installer.sh