Author Topic: Zentyal 3.3 e AD 2012  (Read 2162 times)

lucaspolli

  • Zen Apprentice
  • *
  • Posts: 3
  • Karma: +0/-0
    • View Profile
Zentyal 3.3 e AD 2012
« on: January 05, 2014, 01:04:09 am »
Olá, tenho duas dúvidas:

1 - quando utilizo o zentyal com conexão active directory, consigo sincronizar normalmente os usuários, porem não consigo integra-los com proxy, no log diz que somente a versão paga isso funciona, procede essa informação ou estou fazendo algo errado?

2- alguem ja consegui colocar em modo domínio secundario com server 2012 R2? quando salvo a configuração da no samba/kerberos 

Gilberto Ferreira

  • Zen Hero
  • *****
  • Posts: 516
  • Karma: +12/-1
    • View Profile
Re: Zentyal 3.3 e AD 2012
« Reply #1 on: January 08, 2014, 10:17:00 pm »
Eu achei essas informações aqui no Fórum mesmo:

The following post came from the need to join Zentyal to a Windows 2012 server Domain Controller for an specific client that wanted to migrate their servers to Zentyal for licensing costs. Because Samba does not support this type of DC yet, we use the Threecore laboratories to test a workaround for this issue, we hope this will be useful for all we decide to post it here:

The workaround we found was to lower the functional level and the forest level from Windows 2012 to windows 2008 so that our Zentyal can join the domain, this approach is also very useful, as we mentioned above, to migrate from Windows 2012 DC to Zentyal, we've tested in laboratories internal and works perfect:

Step 1

Open a PowerShell Active Directory console

Step 2

Run:
get-ADForest

We can see the domain name with the different configurations. For Example:

ApplicationPartitions : {DC=ForestDnsZones,DC=zentyal,DC=it,DC=com,
                        DC=DomainDnsZones,DC=zentyal,DC=it,DC=com}
CrossForestReferences : {}
DomainNamingMaster    : win2k12.zentyal.it.com
Domains               : {zentyal.it.com}
ForestMode            : Windows2012Forest
GlobalCatalogs        : {win2k12.zentyal.it.com}
Name                  : zentyal.it.com
PartitionsContainer   : CN=Partitions,CN=Configuration,DC=zentyal,DC=it,DC=com
RootDomain            : zentyal.it.com
SchemaMaster          : win2k12.zentyal.it.com
Sites                 : {Default-First-Site-Name}
SPNSuffixes           : {}
UPNSuffixes           : {}

Step 3

Run:

Set-ADForestMode -Identity "your.domain.com" -
ForestMode Windows2008Forest

Apply Yes

Step 4

Run:
Set-ADDomainMode -Identity "your.domain.com" -
DomainMode Windows2008Domain


Example for both commands:

PS C:\Users\Administrator.WIN2K12> Set-ADForestMode -Identity "zentyal.it.com" -
ForestMode Windows2008Forest

Confirm
Are you sure you want to perform this action?
Performing operation "Set" on Target
"CN=Partitions,CN=Configuration,DC=zentyal,DC=it,DC=com".
[Y] Yes  [A] Yes to All  [N] No  [L] No to All  (S) Suspend  [?] Help
(default is "Y"):y


PS C:\Users\Administrator.WIN2K12> Set-ADDomainMode -Identity "zentyal.it.com" -
DomainMode Windows2008Domain

Confirm
Are you sure you want to perform this action?
Performing operation "Set" on Target "DC=zentyal,DC=it,DC=com".
[Y] Yes  [A] Yes to All  [N] No  [L] No to All  (S) Suspend  [?] Help
(default is "Y"):y


That is all, now you have a windows 2012 server running with an 2008 functional level and forest level, so we can join Zentyal to the domain as an additional DC, cheers!


Segui à risca e funcionou...

Att