{"id":3842,"date":"2013-06-12T10:40:47","date_gmt":"2013-06-12T07:40:47","guid":{"rendered":"http:\/\/www.koraykey.com\/?p=3842"},"modified":"2013-11-28T22:47:19","modified_gmt":"2013-11-28T20:47:19","slug":"linux-isletim-sistemlerinde-birincil-etki-alani-sunucu-yapilandirmasi-samba-domain-controller","status":"publish","type":"post","link":"https:\/\/www.koraykey.com\/?p=3842","title":{"rendered":"Linux \u0130\u015fletim Sistemlerinde Birincil Etki Alan\u0131 Sunucu Yap\u0131land\u0131rmas\u0131 (Samba Domain Controller)"},"content":{"rendered":"<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/LinuxAll.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-797\" alt=\"LinuxAll\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/LinuxAll.jpg\" width=\"250\" height=\"250\" srcset=\"https:\/\/www.koraykey.com\/wp-content\/uploads\/LinuxAll.jpg 250w, https:\/\/www.koraykey.com\/wp-content\/uploads\/LinuxAll-150x150.jpg 150w\" sizes=\"auto, (max-width: 250px) 100vw, 250px\" \/><\/a><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Bu makalemizde &#8220;Linux \u0130\u015fletim Sistemlerinde Birincil Etki Alan\u0131 Sunucu Yap\u0131land\u0131rmas\u0131 (Samba Domain Controller)&#8221; konusunu inceleyece\u011fiz. Kurulum i\u015flemimizi <a title=\"CentOS Community Enterprise Linux 6.x Kurulumu\" href=\"http:\/\/www.koraykey.com\/?p=1025\">&#8220;CentOS Linux 6.4 \u0130\u015fletim Sistemi&#8221;<\/a> \u00fczerinde ger\u00e7ekle\u015ftirece\u011fiz. Kurulum ad\u0131mlar\u0131 Red Hat t\u00fcrevi i\u015fletim sistemleri ile olduk\u00e7a benzerdir.<br \/>\n<\/span><\/p>\n<p style=\"text-align: justify;\"><strong><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Samba Nedir ?<\/span><\/strong><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Samba, Linux\/Unix i\u015fletim sistemleri ile Windows i\u015fletim sistemleri aras\u0131ndaki ileti\u015fim kuran bir a\u011f sunucusu yaz\u0131l\u0131m\u0131d\u0131r. Linux\u2019ta arka planda \u00e7al\u0131\u015fan bu Deamon Windows istemcilerinin samba kurulu olan sunucuda payla\u015f\u0131ma a\u00e7\u0131lm\u0131\u015f dosya ve dizinlere ula\u015f\u0131lmas\u0131na olanak tan\u0131r bunun yan\u0131nda istemcilerin yaz\u0131c\u0131 isteklerinide y\u00f6netebilir. Tam olarak Samba yap\u0131land\u0131r\u0131lm\u0131\u015f bir Linux sunucusu, genel olarak dizinleri payla\u015ft\u0131rabilir, aktif dizin servisi (ADS \u2013 Active Directory Services) verebilir ayr\u0131ca PDC (Birincil Alan Denetleyicisi) olarak da \u00e7al\u0131\u015fabilir, Windows istemcileri ile kullan\u0131c\u0131 onay\u0131 yapar, kaynaklar\u0131 (dizinleri ve yaz\u0131c\u0131lar\u0131) payla\u015ft\u0131r\u0131r ve kullan\u0131c\u0131 oturumlar\u0131n\u0131 uyarlar. Samba Windows istemcileri (clients) i\u00e7in dosya, yaz\u0131c\u0131 servisi sa\u011flaman\u0131n d\u0131\u015f\u0131nda istemciler i\u00e7in i\u015flevsellik ve yard\u0131mc\u0131 uygulamalar i\u00e7erir.<\/span><\/p>\n<p style=\"text-align: justify;\"><strong><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Samba Sunucusunun\u00a0Yapabildikleri<\/span><\/strong><\/p>\n<ul>\n<li style=\"text-align: justify;\">\n<div><a title=\"Linux \u0130\u015fletim Sistemlerinde Samba\/Cifs Sunucu Yap\u0131land\u0131rmas\u0131\" href=\"http:\/\/www.koraykey.com\/?p=744\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">File server ( Windows\u2019tan Linux\u2019e, Linux\u2019tan Windows\u2019a )<\/span><\/a><\/div>\n<\/li>\n<li style=\"text-align: justify;\"><a title=\"Linux \u0130\u015fletim Sistemlerinde Yaz\u0131c\u0131 Sunucusu Yap\u0131land\u0131rmas\u0131 (Samba Print Server)\" href=\"http:\/\/www.koraykey.com\/?p=4149\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Print server ( Windows\u2019tan Linux\u2019e, Linux\u2019tan Windows\u2019a )<\/span><\/a><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">PDC (Windows ve Linux i\u00e7in Birincil Etki Alan\u0131 Denetleyicisi) vb.<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Wins Server<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Master Browser<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Domain Browser<\/span><\/li>\n<\/ul>\n<p style=\"text-align: justify;\">1. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">\u00d6ncelikle sunucumuza i\u015fletim sistemini <a title=\"CentOS Linux 6.x Kurulumu\" href=\"http:\/\/www.koraykey.com\/?p=1025\">&#8220;CentOS Linux \u0130\u015fletim Sistemi Kurulumu&#8221;<\/a> makalemizde anlat\u0131ld\u0131\u011f\u0131 gibi kuruyoruz. Kurulum i\u015flemlerini <a title=\"Red Hat Enterprise Linux \u0130\u015fletim Sistemi Kurulumu\" href=\"http:\/\/www.koraykey.com\/?p=1365\">&#8220;Red Hat Linux&#8221;<\/a> veya <a title=\"Oracle Enterprise Linux 6.x Kurulumu\" href=\"http:\/\/www.koraykey.com\/?p=228\">&#8220;Oracle Linux&#8221;<\/a> i\u015fletim sistemlerinde de yapabiliriz. Ayr\u0131ca Sunucumuzda \u201cFirewall\u201d ve \u201cSELinux\u201d servislerimizi devre d\u0131\u015f\u0131 b\u0131rak\u0131yoruz. E\u011fer \u201cFirewall\u201d servisimiz aktif olacaksa servislerimizin kullanaca\u011f\u0131 portlara izin vermemiz gerekiyor.<br \/>\n<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\"># vim \/etc\/selinux\/config<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Dosyas\u0131n\u0131 a\u00e7\u0131yoruz ve a\u015fa\u011f\u0131daki sat\u0131r\u0131 \"disabled\" olarak ayarl\u0131yoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">SELINUX=disabled<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Firewall servisimizi durdurup kapat\u0131yoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># service iptables stop<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># chkconfig iptables off<\/span><\/pre>\n<p style=\"text-align: justify;\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">E\u011fer sistemimizde &#8220;firewall&#8221; servisi etkin olacaksa &#8220;Samba Etki Alan\u0131 Denetleyicisi&#8221;nin do\u011fru \u00e7al\u0131\u015fabilmesi i\u00e7in a\u015fa\u011f\u0131daki portlara izin verilmelidir.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">DNS\t\t: Port 53 (both TCP and UDP) \r\nMulticast DNS\t: Port 5353 (both TCP and UDP) \r\nSamba\/smbd\t: UDP ports 137 - 138, TCP ports 139 and 445 \r\nEPMMAP\t\t: TCP port 135 \r\nLDAP\t\t: TCP ports 389 and 636, UDP port 389 \r\nKerberos\t\t: Ports 88 and 464 (both TCP and UDP) \r\nDirectory Sync\t: TCP port 1024<\/span><\/pre>\n<p style=\"text-align: justify;\">2. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Sunucumuza sabit bir IP Adresi at\u0131yoruz. Ayr\u0131ca Hosts dosyas\u0131nda gerekli d\u00fczenlemeleri yap\u0131yoruz. IP Adresi vb. atama i\u015flemlerini a\u015fa\u011f\u0131daki gibi komut sat\u0131r\u0131ndan veya grafik aray\u00fcz (gui) yard\u0131m\u0131 ile yapabiliriz.<br \/>\n<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sunucumuza sabit (static) IP adresi at\u0131yoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># vim \/etc\/sysconfig\/network-scripts\/ifcfg-eth0<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">dosyas\u0131n\u0131 a\u00e7\u0131yoruz ve a\u015fa\u011f\u0131daki parametreleri kendi sistemimize g\u00f6re d\u00fczenliyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">IPADDR=192.168.2.121<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">PREFIX=24<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">GATEWAY=192.168.2.1<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">DNS1=192.168.2.121<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">DOMAIN=koraykey.net<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">DEFROUTE=yes<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">ONBOOT=yes\r\n\r\n-- Sunucumuzda DNS ve Domain ayarlar\u0131m\u0131z\u0131 d\u00fczenliyoruz.\r\n\r\n# vim \/etc\/resolv.conf\r\n\r\nsearch koraykey.net\r\nnameserver 192.168.2.121\r\n\r\n-- Heriki yerde DNS sunucumuzu ayn\u0131 sunucu \u00fczerinde yap\u0131land\u0131raca\u011f\u0131m\u0131z i\u00e7in\r\nbu adresi yazd\u0131k.\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sunucumuzda host ismimizi kontrol ediyoruz ve a\u015fa\u011f\u0131daki gibi QFDN ismi ile\r\nd\u00fczenliyoruz. <\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">Ayr\u0131ca varsay\u0131lan a\u011f ge\u00e7idimizide burada do\u011fru oldu\u011funu kontrol\r\nediyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># vim \/etc\/sysconfig\/network<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">NETWORKING=yes<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">HOSTNAME=koraykey-pdc.koraykey.net<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">GATEWAY=192.168.2.1\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sunucumuzda \"hosts\" dosyas\u0131n\u0131 a\u015fa\u011f\u0131daki gibi kendi sistemimize g\u00f6re d\u00fczenliyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">127.0.0.1   \tlocalhost.koraykey.net        localhost<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">192.168.2.121   \tkoraykey-pdc.koraykey.net     koraykey-pdc\r\n\r\n-- Sistemimizde sanalla\u015ft\u0131rma ile ilgili bir sanal a\u011f kart\u0131 aktifse bunu\r\nkapat\u0131yoruz. Kapatmazsak \"samba\" iki adet a\u011f kart\u0131 g\u00f6rerek bind ediyor ve\r\nsorun \u00e7\u0131karabiliyor.\r\n\r\n# ifconfig\r\n\r\nvirbr0\u00a0\u00a0\u00a0 Link encap:Ethernet\u00a0 HWaddr 52:54:00:DC:BF:EB\u00a0 \r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 inet addr:192.168.122.1\u00a0 Bcast:192.168.122.255\u00a0 Mask:255.255.255.0\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 UP BROADCAST MULTICAST\u00a0 MTU:1500\u00a0 Metric:1\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 RX packets:0 errors:0 dropped:0 overruns:0 frame:0\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 collisions:0 txqueuelen:0 \r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 RX bytes:0 (0.0 b)\u00a0 TX bytes:0 (0.0 b)\r\n\r\n-- Yukar\u0131daki gibi \"virbr0\" a\u011f kart\u0131 aktifse kapatmak i\u00e7in a\u015fa\u011f\u0131daki komutlar\u0131\r\nuyguluyoruz. Kurulum sonras\u0131 gerekiyorsa a\u00e7\u0131labilir.\r\n\r\n# virsh net-destroy default\r\n# virsh net-undefine default\r\n# service libvirtd restart\r\n\r\n-- Kapand\u0131\u011f\u0131n\u0131 teyid etmek i\u00e7in a\u015fa\u011f\u0131daki komutu \u00e7al\u0131\u015ft\u0131rd\u0131\u011f\u0131m\u0131zda art\u0131k\r\ng\u00f6r\u00fclmeyecektir.\r\n\r\n# ifconfig<\/span><\/pre>\n<p style=\"text-align: justify;\">3. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Sunucumuzda paket kurulumlar\u0131n\u0131 yapabilmek i\u00e7in &#8220;yum repository&#8221; eri\u015fimi ve internete \u00e7\u0131kabiliyor olmas\u0131 gerekmektedir. Sunucular\u0131m\u0131z direk olarak de\u011filde bir proxy sunucu arac\u0131l\u0131\u011f\u0131 ile internete \u00e7\u0131k\u0131yorsa <a title=\"Linux \u0130\u015fletim Sistemlerinde Yum Repository i\u00e7in Proxy Yap\u0131land\u0131rmas\u0131\" href=\"http:\/\/www.koraykey.com\/?p=3153\">&#8220;Linux \u0130\u015fletim Sistemlerinde Yum Repository i\u00e7in Proxy Yap\u0131land\u0131rmas\u0131&#8221;<\/a> makalemizi inceleyebilirsiniz.<\/span><\/p>\n<p style=\"text-align: justify;\">4. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Sunucumuzda &#8220;samba4&#8221; i\u00e7in disklerimizde &#8220;acl&#8221; ve &#8220;user_xattr&#8221; ayarlar\u0131n\u0131 yap\u0131yoruz. Bu ayarlar &#8220;samba4&#8221; kurulumu i\u00e7in gerekli ayarlard\u0131r. <\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sunucumuzda bulunan \"\/etc\/fstab\" dosyam\u0131z\u0131 a\u00e7arak \"\/\" (root)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">diskimizde gerekli ayarlar\u0131 yap\u0131yoruz. \"fstab\" dosyam\u0131zdaki<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">ayarlar\u0131 yaparken dikkatli olmam\u0131z gerekiyor aksi takdirde<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">sistemimiz a\u00e7\u0131lmayabilir. B\u00f6yle bir durumla kar\u015f\u0131la\u015f\u0131rsak<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">kurulum dvd'mizden \"boot\" i\u015flemi yaparak \"rescue\" modda a\u00e7\u0131p \r\n\"fstab\" <\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">dosyam\u0131z\u0131 d\u00fczelterek sistemimizi kurtarabiliriz.\r\nBurada yapaca\u011f\u0131m\u0131z i\u015flem \"defaults\" de\u011fi\u015fkenini a\u015fa\u011f\u0131daki gibi\r\nd\u00fczenlemek olacakt\u0131r.\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># vim \/etc\/fstab<\/span>\r\n\r\n<span style=\"font-size: 12px;\"><span style=\"font-family: courier new,courier;\">\/dev\/mapper\/vg_koraykey-lv_root \/    ext4    defaults,user_xattr,acl,barrier=1 1<\/span> <span style=\"font-family: courier new,courier;\">1<\/span><\/span><\/pre>\n<p style=\"text-align: justify;\">5. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Sunucumuzda mevcut &#8220;samba&#8221; paketleri varsa bunlar\u0131 kald\u0131r\u0131yoruz. Kurulum i\u015flemimizi &#8220;samba4&#8221; \u00fczerinde yapaca\u011f\u0131m\u0131z i\u00e7in mevcut paketleri kald\u0131r\u0131yoruz ve i\u015fletim sistemimizi g\u00fcncelledikten sonra kurmam\u0131z gereken paketlerimizi kuruyoruz.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- A\u015fa\u011f\u0131daki i\u015flemler internet ve sunucu h\u0131z\u0131n\u0131za g\u00f6re biraz vakit alacakt\u0131r.\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sistemimizde mevcut ve eski versiyon \"samba\" ve \"bind\" paketlerimizi\r\nkald\u0131r\u0131yoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># yum -y remove samba* bind\r\n\r\n-- \u0130\u015fletim sistemimizi g\u00fcncelliyoruz.\r\n\r\n# yum -y update\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Kimlik do\u011frulama, samba kurulumu vb. i\u00e7in gerekli i\u015fletim sistemi paketlerimizi\r\nkuruyoruz. <\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">Yakla\u015f\u0131k 107 paket kurulacakt\u0131r.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># <\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">yum -y install glibc* gcc* python* libacl* libpcap* krb5* git-core dhcp ntp\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sistemimizde samba ile ilgili bir paket kal\u0131p kalmad\u0131\u011f\u0131n\u0131 kontrol ediyoruz.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Sistemimizde \"samba\" ile ilgili bir paket kalmamal\u0131d\u0131r. Aksi takdirde \u00e7ak\u0131\u015fma\r\nolacak ve \u00e7al\u0131\u015fmayacakt\u0131r.\r\n\r\n<\/span><span style=\"font-family: courier new,courier; font-size: 12px;\"># rpm -qa | grep samba<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sistemimize Samba4 paketini \"\/u01\/samba-master\" alt\u0131na derlemek \u00fczere\r\nindiriyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># git clone git:\/\/git.samba.org\/samba.git \/u01\/samba-master\r\n\r\n-- \u00d6ncelikle derleyece\u011fimiz paketimizde bir g\u00fcncelleme varm\u0131 onu kontrol ediyoruz.\r\n\r\n# cd \/u01\/samba-master\r\n# git pull\r\n\r\n-- DNS (Bind) hizmeti i\u00e7in gerekli paketimizi \"\/u01\/bind9\" alt\u0131na derlemek \u00fczere\r\nindiriyoruz. Bind paketimizi kesinlikle \"yum install\" komutlar\u0131 veya \"rpm\" paketi\r\nile kurmuyoruz. Aksi takdirde DDNS (Dynamic DNS) g\u00fcncellemeleri \u00e7al\u0131\u015fmayacakt\u0131r.\r\nEtki alan\u0131m\u0131za bir istemci bilgisayar ekledi\u011fimizde otomatik DNS kay\u0131tlar\u0131\r\nolu\u015fmayacakt\u0131r ve log'larda a\u015fa\u011f\u0131daki gibi hatalar verecektir.\r\n\r\nsamba_dlz: starting transaction on zone example.com\r\nclient 192.168.2.130#62812: update 'example.com\/IN' denied\r\nsamba_dlz: cancelling transaction on zone example.com\r\n\r\n# mkdir -p \/u01\/bind9\r\n# cd \/u01\/bind9\r\n# <\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">wget ftp:\/\/ftp.isc.org\/isc\/bind9\/9.9.4-P1\/bind-9.9.4-P1.tar.gz<\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">\r\n# tar -zxvf bind-9.9.4-P1.tar.gz\r\n\r\n-- Derleme i\u015flemine ge\u00e7meden \u00f6nce sistemimizi yeniden ba\u015flat\u0131yoruz.\r\n\r\n# shutdown -r now\r\n<\/span><\/pre>\n<p style=\"font-family: arial,helvetica,sans-serif;\">6. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Sunucumuzda &#8220;samba4&#8221; paketimizin derleme ve kurulum i\u015flemlerini yap\u0131yoruz.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Samba4 paketimizi derliyoruz. A\u015fa\u011f\u0131daki i\u015flemler biraz vakit alabilir.\r\nYakla\u015f\u0131k 3942 + 4252 paket derleyecektir.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\r\n-- Samba paketimizi derleme ve kurulum i\u015flemenine ba\u015fl\u0131yoruz.\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># cd \/u01\/samba-master<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># .\/configure<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># make<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># make install\r\n\r\n-- Bind (DNS) paketimizi derleme ve kurulum i\u015flemine ba\u015fl\u0131yoruz.\r\n\r\n# cd \/u01\/bind9\/bind-9.9.4-P1\r\n# .\/configure --with-gssapi=\/usr\/include\/gssapi --with-dlopen=yes\r\n# make\r\n# make install\r\n\r\n# groupadd -g 25 named\r\n# useradd -g named -u 25 -d \/var\/named -M -s \/sbin\/nologin named\r\n# chown root:daemon \/var\/run\r\n# chmod 775 \/var\/run\r\n# mkdir -p \/var\/named\/dynamic\r\n# mkdir -p \/var\/named\/data\r\n# mkdir -p \/var\/named\/master\r\n# touch \/etc\/named.conf\r\n# touch \/var\/named\/named.root\r\n# chown -R named:named \/var\/named\r\n# chown named:named \/etc\/named.conf\r\n# chmod -R 755 \/var\/named\r\n\r\n<\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Bu i\u015flemlerden sonra samba komutlar\u0131n\u0131 sistemimizde direk kullanabilmek i\u00e7in<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\".bash_profile\" dosyam\u0131zda \"path\" tan\u0131mlamam\u0131z\u0131 yap\u0131yoruz. A\u015fa\u011f\u0131daki \"path\"<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">de\u011fi\u015fkenini dosyada bulunan mevcut de\u011fi\u015fkenle de\u011fi\u015ftirebiliriz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># cd\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># vim .bash_profile<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">PATH=$PATH:$HOME\/bin:\/usr\/local\/samba\/bin:\/usr\/local\/samba\/sbin\r\n\r\n-- Yap\u0131land\u0131rmaya ge\u00e7meden sistemimizi yeniden ba\u015flat\u0131yoruz. \r\n\r\n# shutdown -r now<\/span><\/pre>\n<p style=\"text-align: justify;\">7. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Sunucumuzda &#8220;samba4&#8221; arac\u0131l\u0131\u011f\u0131 ile etki alan\u0131 (domain) kurulumuna\u00a0 ba\u015fl\u0131yoruz.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Etki alan\u0131 kurulum i\u015flemine ba\u015fl\u0131yoruz. Se\u00e7enekleri dikkatli girmeliyiz.\r\ngeri alam\u0131yoruz. Bir de\u011feri yanl\u0131\u015f girdiysek yeniden ba\u015flamak i\u00e7in \"ctrl+c\" ile\r\ni\u015flemi kesmeliyiz. Ayr\u0131ca parola atarken karma\u015f\u0131k olmas\u0131 zorunlulu\u011fu vard\u0131r.\r\nEn az\u0131ndan bir harfi b\u00fcy\u00fck olacak \u015fekilde atamal\u0131y\u0131z. Bu i\u015flemleri do\u011fru yapmazsak\r\nkurulum i\u015flemi hata verecektir. Samba kurulacak sunucu ile Bind (DNS) servisinin\r\nayn\u0131 sunucuda olmas\u0131 zorunludur.\r\n\r\n# samba-tool domain provision\r\n\r\nRealm [KORAYKEY.NET]: KORAYKEY.NET\r\nDomain [KORAYKEY]: KORAYKEY\r\nServer Role (dc, member, standalone) [dc]: dc\r\nDNS backend (SAMBA_INTERNAL, BIND9_FLATFILE, BIND9_DLZ, NONE) [SAMBA_INT]: BIND9_DLZ\r\nAdministrator password: Password100\r\nRetype password: Password100\r\nLooking up IPv4 addresses\r\nLooking up IPv6 addresses\r\nNo IPv6 address will be assigned\r\nSetting up share.ldb\r\nSetting up secrets.ldb\r\nSetting up the registry\r\nSetting up the privileges database\r\nSetting up idmap db\r\nSetting up SAM db\r\nSetting up sam.ldb partitions and settings\r\nSetting up sam.ldb rootDSE\r\nPre-loading the Samba 4 and AD schema\r\nAdding DomainDN: DC=koraykey,DC=net\r\nAdding configuration container\r\nSetting up sam.ldb schema\r\nSetting up sam.ldb configuration data\r\nSetting up display specifiers\r\nModifying display specifiers\r\nAdding users container\r\nModifying users container\r\nAdding computers container\r\nModifying computers container\r\nSetting up sam.ldb data\r\nSetting up well known security principals\r\nSetting up sam.ldb users and groups\r\nSetting up self join\r\nAdding DNS accounts\r\nCreating CN=MicrosoftDNS,CN=System,DC=koraykey,DC=net\r\nCreating DomainDnsZones and ForestDnsZones partitions\r\nPopulating DomainDnsZones and ForestDnsZones partitions\r\nSee \/usr\/local\/samba\/private\/named.conf for an example configuration include \r\nfile for BIND\r\nand \/usr\/local\/samba\/private\/named.txt for further documentation required for\r\nsecure DNS updates\r\nSetting up sam.ldb rootDSE marking as synchronized\r\nFixing provision GUIDs\r\nA Kerberos configuration suitable for Samba 4 has been generated at\r\n\/usr\/local\/samba\/private\/krb5.conf\r\nOnce the above files are installed, your Samba4 server will be ready to use\r\nServer Role:\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 active directory domain controller\r\nHostname:\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 koraykey-pdc\r\nNetBIOS Domain:\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 KORAYKEY\r\nDNS Domain:\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 koraykey.net\r\nDOMAIN SID:\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 S-1-5-21-354508688-3167613570-812071699\r\n\r\n-- Kerberos kimlik do\u011frulama sistemi yap\u0131land\u0131rma dosyas\u0131n\u0131 samba dizininden\r\nkopyal\u0131yoruz.\r\n\r\n-- Mevcut dosyan\u0131n yede\u011fini al\u0131yoruz.\r\n\r\n# mv \/etc\/krb5.conf \/etc\/krb5.conf.bak\r\n\r\n-- Kerberos yap\u0131land\u0131rma dosyas\u0131n\u0131 kopyal\u0131yoruz \r\n\r\n# cp -pr \/usr\/local\/samba\/private\/krb5.conf \/etc\/krb5.conf\r\n\r\n-- Bind (DNS) Samba servis entegrasyonumuz i\u00e7in gerekli izinleri veriyoruz.\r\n\r\n# chgrp named \/usr\/local\/samba\/private\/dns.keytab\r\n# chmod g+r \/usr\/local\/samba\/private\/dns.keytab\r\n# chmod g+r \/etc\/krb5.conf\r\n<\/span><\/pre>\n<p style=\"text-align: justify;\">8. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Sunucumuzda Bind (DNS) servisimizi yap\u0131land\u0131r\u0131yoruz. Bu i\u015flemler \u00e7ok \u00f6nemlidir e\u011fer Bind (DNS) servisimiz d\u00fczg\u00fcn \u00e7al\u0131\u015fmazsa \u00f6zellikle kerberos kimlik do\u011frulama sistemimiz do\u011fru \u00e7al\u0131\u015fmayacakt\u0131r. Yap\u0131land\u0131rmam\u0131z\u0131 a\u015fa\u011f\u0131daki \u00f6rnek dosyadaki gibi \u00e7ok dikkatli bir \u015fekilde yap\u0131yoruz. Aksi takdirde &#8220;samba&#8221; sunucumuz \u00e7al\u0131\u015fmayacakt\u0131r. Bind (DNS) sunucumuzu yap\u0131land\u0131r\u0131rken &#8220;zone&#8221; dosyas\u0131 vb. olu\u015fturmayaca\u011f\u0131z. Bu i\u015flemi &#8220;samba&#8221; kurulumda otomatik olu\u015fturacak biz sadece bir ka\u00e7 de\u011fi\u015fkeni ve &#8220;reverse zone&#8221; dosyam\u0131z\u0131 olu\u015fturup sonradan ekleyece\u011fiz.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sistemimizde varsa \"bind chroot\" sistemini devre d\u0131\u015f\u0131 b\u0131rakmam\u0131z gerekiyor.\r\nAksi takdirde \"samba\" \u00e7al\u0131\u015fmayacakt\u0131r. Bizim yukar\u0131daki kurulumumuzda bulunmuyor.\r\nBundan dolay\u0131 bu ad\u0131m\u0131 atlayabiliriz.\r\n\r\n# vim \/etc\/sysconfig\/named\r\n\r\nNAMED_RUN_CHROOTED=\"no\"\r\n\r\n-- Bu ayar\u0131 yapmazsak \"bind\" servisimizi ba\u015flat\u0131rken a\u015fa\u011f\u0131daki gibi hata al\u0131r\u0131z.\r\n\r\nError in named configuration:\r\n\/etc\/named.conf:45: open: \/usr\/local\/samba\/private\/named.conf: file not found\r\n[FAILED]\r\numount: \/var\/named\/chroot\/var\/named: device is busy.\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 (In some cases useful info about processes that use\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 the device is found by lsof(8) or fuser(1))\r\n\r\n-- Bind (DNS) yap\u0131land\u0131rmam\u0131z\u0131 a\u015fa\u011f\u0131daki gibi yap\u0131yoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># vim \/etc\/named.conf<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\/\/\r\n\/\/ named.conf\r\n\/\/\r\n\/\/ Provided by Red Hat bind package to configure the ISC BIND named(9) DNS\r\n\/\/ server as a caching only nameserver (as a localhost DNS resolver only).\r\n\/\/\r\n\r\noptions {\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 listen-on port 53 { 127.0.0.1; 192.168.2.121; };\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 listen-on-v6 port 53 { ::1; };\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 directory\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \"\/var\/named\";\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 tkey-gssapi-keytab \"\/usr\/local\/samba\/private\/dns.keytab\";\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 forwarders\u00a0\u00a0\u00a0 { 8.8.8.8; 8.8.4.4; };\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 allow-query\u00a0\u00a0\u00a0 { any; };\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 empty-zones-enable no;\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 recursion yes;\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 auth-nxdomain yes;\r\n\r\n};\r\n\r\n# Root servers (required zone for recursive queries)\r\nzone \".\" {\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 type hint;\r\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 file \"named.root\";\r\n};\r\n\r\ninclude \"\/usr\/local\/samba\/private\/named.conf\";\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Forward Zone dosyam\u0131z\u0131 samba kurulumda otomatik olu\u015fturdu biz sadece\r\n\"reverse zone\" dosyam\u0131z\u0131 olu\u015fturuyoruz. E\u011fer bizde \"forward zone\" olu\u015fturursak\r\n\"bind\" servisimiz hata verecek ve ba\u015flamayacakt\u0131r.\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Reverse Zone dosyam\u0131z\u0131 kurulum i\u015flemi bittikten sonra Windows y\u00f6netim ara\u00e7lar\u0131\r\nile kuraca\u011f\u0131z. Makalemizin 18. ad\u0131m\u0131nda bu i\u015flemler anlat\u0131l\u0131yor.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- (Bind) Dns sunucumuzun versiyonunu kontrol ediyoruz.\r\n<\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">\r\n# named -V\r\nBIND 9.9.3-P1 (Extended Support Version)\r\nbuilt with '--with-gssapi=\/usr\/include\/gssapi' '--with-dlopen=yes'\r\nusing OpenSSL version: OpenSSL 1.0.0 29 Mar 2010\r\nusing libxml2 version: 2.7.6\r\n\r\n-- Bind versiyonumuz 9.9.x oldu\u011fu i\u00e7in a\u015fa\u011f\u0131daki dosyam\u0131z\u0131 buna g\u00f6re d\u00fczenliyoruz.\r\n\r\n# vim \/usr\/local\/samba\/private\/named.conf\r\n\r\ndlz \"AD DNS Zone\" {\r\n    # For BIND 9.8.0\r\n\u00a0\u00a0\u00a0 # database \"dlopen \/usr\/local\/samba\/lib\/bind9\/dlz_bind9.so\";\r\n\r\n\u00a0\u00a0\u00a0 # For BIND 9.9.0\r\n\u00a0\u00a0\u00a0 database \"dlopen \/usr\/local\/samba\/lib\/bind9\/dlz_bind9_9.so\";\r\n};\r\n\r\n-- Bind (DNS) i\u00e7in \"root dns\" dosyam\u0131z\u0131 a\u015fa\u011f\u0131daki gibi d\u00fczenliyoruz.\r\n\r\n# vim \/var\/named\/named.root\r\n\r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 This file holds the information on root name servers needed to\r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 initialize cache of Internet domain name servers\r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 (e.g. reference this file in the \"cache\u00a0 .\u00a0 &lt;file&gt;\"\r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 configuration file of BIND domain name servers).\r\n;\r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 This file is made available by InterNIC \r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 under anonymous FTP as\r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 file\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \/domain\/named.cache\r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 on server\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 FTP.INTERNIC.NET\r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 -OR-\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 RS.INTERNIC.NET\r\n;\r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 last update:\u00a0\u00a0\u00a0 Jan 3, 2013\r\n;\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 related version of root zone:\u00a0\u00a0 2013010300\r\n;\r\n; formerly NS.INTERNIC.NET\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0 IN\u00a0 NS\u00a0\u00a0\u00a0 A.ROOT-SERVERS.NET.\r\nA.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 198.41.0.4\r\nA.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 AAAA\u00a0 2001:503:BA3E::2:30\r\n;\r\n; FORMERLY NS1.ISI.EDU\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 B.ROOT-SERVERS.NET.\r\nB.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 192.228.79.201\r\n;\r\n; FORMERLY C.PSI.NET\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 C.ROOT-SERVERS.NET.\r\nC.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 192.33.4.12\r\n;\r\n; FORMERLY TERP.UMD.EDU\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 D.ROOT-SERVERS.NET.\r\nD.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 199.7.91.13\r\nD.ROOT-SERVERS.NET.\u00a0\u00a0 \u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 AAAA\u00a0 2001:500:2D::D\r\n;\r\n; FORMERLY NS.NASA.GOV\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 E.ROOT-SERVERS.NET.\r\nE.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 192.203.230.10\r\n;\r\n; FORMERLY NS.ISC.ORG\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 F.ROOT-SERVERS.NET.\r\nF.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 192.5.5.241\r\nF.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 AAAA\u00a0 2001:500:2F::F\r\n;\r\n; FORMERLY NS.NIC.DDN.MIL\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 G.ROOT-SERVERS.NET.\r\nG.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 192.112.36.4\r\n;\r\n; FORMERLY AOS.ARL.ARMY.MIL\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 H.ROOT-SERVERS.NET.\r\nH.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 128.63.2.53\r\nH.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 AAAA\u00a0 2001:500:1::803F:235\r\n;\r\n; FORMERLY NIC.NORDU.NET\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 I.ROOT-SERVERS.NET.\r\nI.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 192.36.148.17\r\nI.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 AAAA\u00a0 2001:7FE::53\r\n;\r\n; OPERATED BY VERISIGN, INC.\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 J.ROOT-SERVERS.NET.\r\nJ.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 192.58.128.30\r\nJ.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 AAAA\u00a0 2001:503:C27::2:30\r\n;\r\n; OPERATED BY RIPE NCC\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 K.ROOT-SERVERS.NET.\r\nK.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 193.0.14.129\r\nK.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 AAAA\u00a0 2001:7FD::1\r\n;\r\n; OPERATED BY ICANN\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 L.ROOT-SERVERS.NET.\r\nL.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 199.7.83.42\r\nL.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 AAAA\u00a0 2001:500:3::42\r\n;\r\n; OPERATED BY WIDE\r\n;\r\n.\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 NS\u00a0\u00a0\u00a0 M.ROOT-SERVERS.NET.\r\nM.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 A\u00a0\u00a0\u00a0\u00a0 202.12.27.33\r\nM.ROOT-SERVERS.NET.\u00a0\u00a0\u00a0\u00a0\u00a0 3600000\u00a0\u00a0\u00a0\u00a0\u00a0 AAAA\u00a0 2001:DC3::35\r\n; End of File\r\n\r\n-- Secure DNS i\u00e7in \"rndc.key\" dosyam\u0131z\u0131 olu\u015fturuyoruz.\r\n\r\n# rndc-confgen -a\r\n\r\n-- Bind (DNS) uygulamam\u0131z\u0131 ba\u015flat\u0131yoruz ve testlerimizi yap\u0131yoruz.\r\n\r\n# named -u named\r\n\r\n<\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Bind servisimizin ayarlar\u0131n\u0131 kontrol ediyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># nslookup google.com<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Server:         192.168.2.121<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Address:        192.168.2.121#53<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Non-authoritative answer:<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Name:   google.com<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Address: 173.194.112.71<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">...\r\n\r\n# nslookup koraykey-pdc.koraykey.net\r\nServer:\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 192.168.2.121\r\nAddress:\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 192.168.2.121#53\r\n\r\nName:\u00a0\u00a0 koraykey-pdc.koraykey.net\r\nAddress: 192.168.2.121\r\nName:\u00a0\u00a0 koraykey-pdc.koraykey.net\r\nAddress: 192.168.122.1\r\n\r\n-- \"root dns\" sunucular\u0131m\u0131z\u0131 arada g\u00fcncelleyebiliriz. Bunun i\u00e7in a\u015fa\u011f\u0131daki\r\nkomutlar\u0131 \u00e7al\u0131\u015ft\u0131rmam\u0131z yeterlidir.\r\n\r\n# wget -q -O \/var\/named\/named.root http:\/\/www.internic.net\/zones\/named.root\r\n# chown named:named \/var\/named\/named.root\r\n\r\n-- Bind (DNS) zone kay\u0131tlar\u0131 \"samba\" taraf\u0131ndan y\u00f6netildi\u011fi i\u00e7in bir DNS kayd\u0131\r\neklemek veya \u00e7\u0131kartmak istedi\u011fimizde a\u015fa\u011f\u0131daki komutlar\u0131 kullanabiliriz.\r\nBu i\u015flemleri daha sonra Windows Y\u00f6netim ara\u00e7lar\u0131 (DNS) gui aray\u00fczdende yapabiliriz.\r\n\r\n-- Kay\u0131t eklemek i\u00e7in\r\n\r\n# samba-tool dns add &lt;server&gt; &lt;zone&gt; &lt;name&gt; &lt;A|AAAA|PTR|CNAME|NS|MX|SRV&gt; &lt;data&gt;\r\n\r\n-- Kay\u0131t \u00e7\u0131kartmak i\u00e7in\r\n\r\n# samba-tool dns delete &lt;server&gt; &lt;zone&gt; &lt;name&gt; &lt;A|AAAA|PTR|CNAME|NS|MX|SRV&gt; &lt;data&gt;\r\n\r\n-- \u00d6rnek kay\u0131t ekleme komutu\r\n\r\n# samba-tool dns add koraykey-pdc koraykey.net gateway.koraykey.net A 192.168.2.1\r\nPassword for [administrator@KORAYKEY.NET]:\r\nRecord added successfully\r\n\r\n# nslookup gateway.koraykey.net\r\nServer:\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 192.168.2.121\r\nAddress:\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 192.168.2.121#53\r\n\r\nName:\u00a0\u00a0 gateway.koraykey.net\r\nAddress: 192.168.2.1\r\n\r\n-- \u00d6rnek kay\u0131t \u00e7\u0131kartma komutu\r\n\r\n# samba-tool dns delete koraykey-pdc koraykey.net gateway.koraykey.net A 192.168.2.1\r\nRecord deleted successfully\r\n\r\n-- Di\u011fer Samba Tool DNS komutlar\u0131n\u0131 g\u00f6rmek i\u00e7in\r\n\r\n# samba-tool dns\r\n\r\nUsage: samba-tool dns &lt;subcommand&gt;\r\n\r\nDomain Name Service (DNS) management.\r\n\r\nOptions:\r\n\u00a0 -h, --help\u00a0 show this help message and exit\r\n\r\nAvailable subcommands:\r\n\u00a0 add\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 - Add a DNS record\r\n\u00a0 delete\u00a0\u00a0\u00a0\u00a0\u00a0 - Delete a DNS record\r\n\u00a0 query\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 - Query a name.\r\n\u00a0 roothints\u00a0\u00a0 - Query root hints.\r\n\u00a0 serverinfo\u00a0 - Query for Server information.\r\n\u00a0 update\u00a0\u00a0\u00a0\u00a0\u00a0 - Update a DNS record\r\n\u00a0 zonecreate\u00a0 - Create a zone.\r\n\u00a0 zonedelete\u00a0 - Delete a zone.\r\n\u00a0 zoneinfo\u00a0\u00a0\u00a0 - Query for zone information.\r\n\u00a0 zonelist\u00a0\u00a0\u00a0 - Query for zones.\r\n<\/span><\/pre>\n<p style=\"text-align: justify;\">9. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Samba Etki Alan\u0131 Denetleyicimizin ve Bind (DNS) servisimizin sistemimiz a\u00e7\u0131ld\u0131\u011f\u0131nda otomatik ba\u015flamas\u0131 i\u00e7in servis olu\u015fturmam\u0131z gerekiyor. Servislerimizi olu\u015fturup sistemimiz a\u00e7\u0131ld\u0131\u011f\u0131nda otomatik ba\u015flamas\u0131 i\u00e7in gerekli ayalar\u0131 yap\u0131yoruz.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Samba servisimiz i\u00e7in dosyam\u0131z\u0131 olu\u015fturuyoruz ve a\u015fa\u011f\u0131daki i\u00e7eri\u011fi kopyal\u0131yoruz.\r\n\r\n# vim \/etc\/init.d\/samba<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> #! \/bin\/bash<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> #<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> # samba4       Bring up\/down samba4 service <\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> #<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> # chkconfig: - 90 10<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> # description: Activates\/Deactivates all samba4 interfaces configured to \\<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> #              start at boot time.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> #<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> ### BEGIN INIT INFO<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> # Provides: <\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> # Should-Start: <\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> # Short-Description: Bring up\/down samba4<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> # Description: Bring up\/down samba4<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> ### END INIT INFO<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> # Source function library.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> . \/etc\/init.d\/functions<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> if [ -f \/etc\/sysconfig\/samba4 ]; then<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \t. \/etc\/sysconfig\/samba4<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> fi<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> CWD=$(pwd)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> prog=\"samba4\"<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> start() {<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">       # Attach irda device <\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">       echo -n $\"Starting $prog: \"<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \t\/usr\/local\/samba\/sbin\/samba<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \tsleep 2<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \tif ps ax | grep -v \"grep\" | grep -q \/samba\/sbin\/samba ; then success $\"samba4 startup\"; else failure $\"samba4 startup\"; fi<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">       echo<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> }<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> stop() {<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">       # Stop service.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">       echo -n $\"Shutting down $prog: \"<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \tkillall samba<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \tsleep 2<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \tif ps ax | grep -v \"grep\" | grep -q \/samba\/sbin\/samba ; then failure $\"samba4 shutdown\"; else success $\"samba4 shutdown\"; fi<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">       echo<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> }<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> status() {<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \t\/usr\/local\/samba\/sbin\/samba --show-build<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> }<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> # See how we were called.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> case \"$1\" in<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> start)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \tstart<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">       ;;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> stop)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \tstop<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">       ;;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> status)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \tstatus irattach<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \t;;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> restart|reload)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \tstop<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \tstart<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> \t;;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> *)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">       echo $\"Usage: $0 {start|stop|restart|status}\"<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">       exit 1<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> esac<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> exit 0<\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">\r\n\r\n-- Bind (DNS) servisimiz i\u00e7in dosyam\u0131z\u0131 olu\u015fturuyoruz ve a\u015fa\u011f\u0131daki i\u00e7eri\u011fi\r\nkopyal\u0131yoruz.\r\n<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># vim \/etc\/init.d\/named<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">#!\/bin\/sh<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">#<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># named This shell script takes care of starting and stopping<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># named (BIND DNS server).<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">#<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># chkconfig: 345 55 45<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># description: named (BIND) is a Domain Name Server (DNS) \\<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># that is used to resolve host names to IP addresses.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># probe: true<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">#<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># Source function library.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">. \/etc\/rc.d\/init.d\/functions<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">#<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># Source networking configuration.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">. \/etc\/sysconfig\/network<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">#<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># Check that networking is up.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">[ ${NETWORKING} = \"no\" ] &amp;&amp; exit 0<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">#<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">[ -f \/usr\/local\/sbin\/named ] || exit 0<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">[ -f \/etc\/named.conf ] || exit 0<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">#<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># See how we were called.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">case \"$1\" in<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 start)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # Start daemons.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 echo -n \"Starting named: \"<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 daemon \/usr\/local\/sbin\/named -u named -c \/etc\/named.conf<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 echo<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 touch \/var\/lock\/subsys\/named<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ;;<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 stop)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # Stop daemons.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 echo -n \"Shutting down named: \"<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 kill `pidof named`<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 echo<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 rm -f \/var\/lock\/subsys\/named<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ;;<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 status)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 status named<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 exit $?<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ;;<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 restart)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 $0 stop<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 $0 start<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 exit $?<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ;;<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 reload)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \/usr\/local\/sbin\/rndc reload<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 exit $?<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ;;<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 probe)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # named knows how to reload intelligently; we don't want linuxconf<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # to offer to restart every time<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \/usr\/local\/sbin\/rndc reload &gt;\/dev\/null 2&gt;&amp;1 || echo start<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 exit 0<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ;;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 #<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 *)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 echo \"Usage: named {start|stop|status|restart|reload}\"<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 exit 1<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">esac<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">#<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">exit 0<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Servislerimizin \u00e7al\u0131\u015fmas\u0131 i\u00e7in gerekli izinleri veriyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># chmod 750 \/etc\/init.d\/samba<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># chmod 750 \/etc\/init.d\/named<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Servislerimizi sisteme ekliyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># chkconfig --add samba<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># chkconfig --add named<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Servislerimizi sunucumuz a\u00e7\u0131l\u0131rken otomatik ba\u015flayacak \u015fekilde<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">ayarl\u0131yoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># chkconfig samba on<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># chkconfig named on\r\n\r\n<\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sistemimizi yeniden ba\u015flat\u0131p ayarlar\u0131 test ediyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># shutdown -r now<\/span><\/pre>\n<p style=\"text-align: justify;\">10. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Samba Etki Alan\u0131 Denetleyicisi yap\u0131land\u0131rma i\u015flemlerimiz tamamland\u0131. Sistemimizin do\u011fru \u00e7al\u0131\u015ft\u0131\u011f\u0131n\u0131 a\u015fa\u011f\u0131daki komutlarla test edebiliriz.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- A\u015fa\u011f\u0131daki gibi \u00e7\u0131kt\u0131lar al\u0131yorsak sistemimiz \u00e7al\u0131\u015f\u0131yor demektir.\r\n\r\n# smbclient -L localhost -U%<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Domain=[KORAYKEY] OS=[Unix] Server=[Samba 4.1.0pre1-GIT-7f760ed]<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">        Sharename       Type      Comment<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">        ---------       ----      -------<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">        netlogon        Disk      <\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">        sysvol          Disk      <\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">        IPC$            IPC       IPC Service (Samba 4.1.0pre1-GIT-7f760ed)<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Domain=[KORAYKEY] OS=[Unix] Server=[Samba 4.1.0pre1-GIT-7f760ed]<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">        Server               Comment<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">        ---------            -------<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">        Workgroup            Master<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">        ---------            -------<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># host -t SRV _ldap._tcp.koraykey.net<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">_ldap._tcp.koraykey.net has SRV record 0 100 389 koraykey-pdc.koraykey.net.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># host -t SRV _kerberos._udp.koraykey.net<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">_kerberos._udp.koraykey.net has SRV record 0 100 88 koraykey-pdc.koraykey.net.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># host -t A koraykey-pdc.koraykey.net<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">koraykey-pdc.koraykey.net has address 192.168.122.1<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># kinit administrator@KORAYKEY.NET<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Password for administrator@KORAYKEY.NET: <\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">**********<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Warning: Your password will expire in 41 days on Wed Jul 31 14:57:53 2013<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># samba_dnsupdate --verbose --all-names\r\n...\r\n<\/span><\/pre>\n<p style=\"text-align: justify;\">11. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Sunucumuzu ayn\u0131 zamanda NTP (Zaman) Server olarak ayarl\u0131yoruz. Bu sayede etki alan\u0131na \u00fcye olacak kullan\u0131c\u0131lar\u0131n zaman senkronizasyonu yap\u0131lm\u0131\u015f olacakt\u0131r.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- NTP yap\u0131land\u0131rma dosyam\u0131z\u0131 a\u00e7\u0131yoruz ve a\u015fa\u011f\u0131daki bulunan sat\u0131rlar\u0131n alt\u0131na<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">etki alan\u0131 zaman yap\u0131land\u0131rmam\u0131z\u0131 ekliyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># vim \/etc\/ntp.conf<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># Use public servers from the pool.ntp.org project.<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># Please consider joining the pool (http:\/\/www.pool.ntp.org\/join.html).<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">server 0.rhel.pool.ntp.org<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">server 1.rhel.pool.ntp.org<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">server 2.rhel.pool.ntp.org<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># Samba Time Server<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">server \t127.127.1.0<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">fudge \t127.127.1.0  stratum 12<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">ntpsigndsocket \/usr\/local\/samba\/var\/lib\/ntp_signd\/<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">restrict default mssntp<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- De\u011fi\u015fikliklerin ge\u00e7erli olmas\u0131 i\u00e7in NTP servisimizi yeniden ba\u015flat\u0131yoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># service ntpd restart<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Ayarlar\u0131m\u0131z\u0131 test etmek i\u00e7in<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># ntpq -np<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">     remote           refid      st t when poll reach   delay   offset  jitter<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">==============================================================================<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> 95.211.7.153    103.52.146.131   2 u    2   64    1   65.377    7.432   0.000<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> 148.240.19.26   200.23.51.102    2 u    1   64    1  222.620   11.426   0.000<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> 131.211.8.244   .PPS.            1 u    -   64    1   71.908   11.379   0.000<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"> 127.127.1.0     .LOCL.          12 l    -   64    0    0.000    0.000   0.000<\/span><\/pre>\n<p style=\"text-align: justify;\">12. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Sunucumuzda ayn\u0131 zamanda otomatik IP da\u011f\u0131t\u0131m\u0131 yapacaksak DHCP servisimizi kurmam\u0131z gerekiyor. Bunun i\u00e7in a\u015fa\u011f\u0131daki ayarlar\u0131 sistemimizde yap\u0131yoruz.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sunucumuzda \u201cDHCP Server\u201d yap\u0131land\u0131rma i\u00e7in kullanaca\u011f\u0131m\u0131z <\/span><span style=\"font-family: courier new,courier; font-size: 12px;\">\u201c\/etc\/dhcp\/dhcpd.conf\u201d\r\ndosyas\u0131nda da\u011f\u0131taca\u011f\u0131 IP aral\u0131\u011f\u0131na g\u00f6re a\u015fa\u011f\u0131daki \u00f6rnekte oldu\u011fu gibi d\u00fczenliyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># vim \/etc\/dhcp\/dhcpd.conf<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Allow booting;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Allow bootp;\r\nAllow client-updates;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">authoritative;<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">subnet 192.168.2.0 netmask 255.255.255.0 {<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">  option routers               192.168.2.1;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">  option subnet-mask           255.255.255.0;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">  option ntp-servers\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 192.168.2.121;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">  option domain-name           \"koraykey.net\";<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">  option domain-name-servers   192.168.2.121;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">  default-lease-time           21600;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">  max-lease-time               43200;\r\n  ddns-updates on;\r\n  ddns-update-style interim;\r\n  ignore client-updates;\r\n  update-static-leases on;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">  range dynamic-bootp 192.168.2.100 192.168.2.253;<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">}<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sunucumuzda \u201cDHCP Server\u201d servisini yapt\u0131\u011f\u0131m\u0131z ayarlarla ba\u015flat\u0131yoruz ve\r\nsunucumuz yeniden ba\u015flad\u0131\u011f\u0131nda otomatik a\u00e7\u0131lmas\u0131 i\u00e7in gerekli ayar\u0131m\u0131z\u0131 yap\u0131yoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># service dhcpd start<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># chkconfig dhcpd on\r\n\r\n-- Sistemimizin kurulumu tamamland\u0131 sunucumuzu yeniden ba\u015flat\u0131yoruz ve istemci\r\nbilgisayarlar\u0131 etki alan\u0131na \u00fcye yapmaya ge\u00e7iyoruz.\r\n\r\n# shutdown -r now<\/span><\/pre>\n<p style=\"text-align: justify;\">13. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">\u00d6ncelikle bir istemci bilgisayar\u0131 kurmu\u015f oldu\u011fumuz &#8220;koraykey.net&#8221; etki alan\u0131na \u00fcye yap\u0131yoruz. Bunun i\u00e7in &#8220;Bilgisayar \u00d6zellikleri&gt;Bilgisayar&#8221; sekmesini a\u00e7\u0131yoruz ve istemci ad\u0131n\u0131 ve workgroup&#8217;unu a\u015fa\u011f\u0131daki gibi sistemimize g\u00f6re d\u00fczenliyoruz. Bu de\u011fi\u015fikliklerden sonra istemcimizi yeniden ba\u015flat\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_1.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3926\" alt=\"SambaPdcInstall_1\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_1.jpg\" width=\"428\" height=\"480\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">14. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">\u0130stemcimiz a\u00e7\u0131ld\u0131\u011f\u0131nda &#8220;Ba\u015flat&gt;\u00c7al\u0131\u015ft\u0131r&#8221; yolunda &#8220;cmd&#8221; yazarak komut istemcisini a\u00e7\u0131yoruz ve &#8220;ipconfig \/all&#8221; komutunu vererek istemcimizin ald\u0131\u011f\u0131 IP adresi vb. de\u011fi\u015fkenlerin sistemizle uyumlu oldu\u011funu kontrol ediyoruz. \u0130stemcimiz yap\u0131land\u0131rd\u0131\u011f\u0131m\u0131z DHCP sunucusundan adres alm\u0131\u015fsa sorunsuz olarak yap\u0131lanacakt\u0131r.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_2.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3927\" alt=\"SambaPdcInstall_2\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_2.jpg\" width=\"640\" height=\"316\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">15. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">\u0130stemcimizi etki alan\u0131na \u00fcye yapabilmek i\u00e7in &#8220;Bilgisayar \u00d6zellikleri&gt;Bilgisayar&#8221; sekmesini a\u00e7\u0131yoruz ve Etki Alan\u0131 (Domain) ismini a\u015fa\u011f\u0131daki gibi yaz\u0131yoruz ve &#8220;Tamam&#8221; d\u00fc\u011fmesine t\u0131kl\u0131yoruz. Bizde istemcimizi etki alan\u0131na \u00fcye yapabilmek i\u00e7in istemci eklemeye yetkisi olan bir kullan\u0131c\u0131 ad\u0131 ve \u015fifre istiyor. Samba PDC kurulumu s\u0131ras\u0131nda olu\u015fan &#8220;Administrator&#8221; kullan\u0131c\u0131s\u0131 ve atam\u0131\u015f oldu\u011fumuz parolay\u0131 giriyoruz ve &#8220;Tamam&#8221; d\u00fc\u011fmesine t\u0131kl\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_3.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3928\" alt=\"SambaPdcInstall_3\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_3.jpg\" width=\"640\" height=\"344\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">16.<span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\"> \u0130stemcimiz etki alan\u0131na ba\u015far\u0131yla \u00fcye oldu &#8220;Tamam&#8221; d\u00fc\u011fmesini t\u0131klad\u0131ktan sonra istemcimizi yeniden ba\u015flat\u0131yoruz.<\/span><\/p>\n<p><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_4.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3929\" alt=\"SambaPdcInstall_4\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_4.jpg\" width=\"640\" height=\"402\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">14.<span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\"> \u0130stemcimizle etki alan\u0131m\u0131zda oturum a\u00e7\u0131yoruz. Bunun i\u00e7in az \u00f6nce kulland\u0131\u011f\u0131m\u0131z &#8220;Administrator&#8221; kullan\u0131c\u0131s\u0131 ve parolas\u0131n\u0131 kullan\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_5.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3930\" alt=\"SambaPdcInstall_5\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_5.jpg\" width=\"640\" height=\"402\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">15. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">&#8220;Bilgisayar \u00d6zellikleri&gt;Bilgisayar&#8221; sekmesini a\u00e7t\u0131\u011f\u0131m\u0131zda istemcimizin &#8220;koraykey.net&#8221; etki alan\u0131na \u00fcye oldu\u011funu g\u00f6r\u00fcyoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_6.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3931\" alt=\"SambaPdcInstall_6\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_6.jpg\" width=\"428\" height=\"480\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">16.<span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\"> \u015eimdi etki alan\u0131m\u0131z\u0131 (domain) y\u00f6netebilmek i\u00e7in gerekli olan ara\u00e7lar\u0131m\u0131z\u0131 kuruyoruz. Bu ara\u00e7lar i\u00e7in &#8220;Ba\u015flat&gt;Y\u00f6netimsel Ara\u00e7lar&gt;Server Manager&#8221; program\u0131n\u0131 \u00e7al\u0131\u015ft\u0131r\u0131yoruz ve &#8220;Features&#8221; se\u00e7ene\u011finde &#8220;Add Features&#8221; d\u00fc\u011fmesine t\u0131klayarak a\u00e7\u0131lan pencereden &#8220;Group Policy Management&#8221; ve &#8220;Remote Server Administration Tools&#8221; se\u00e7eneklerini i\u015faretliyoruz ve di\u011fer t\u00fcm ad\u0131mlar\u0131 &#8220;Next&#8221; ile ge\u00e7iyoruz. Kurulum tamamland\u0131\u011f\u0131nda istemcimizi yeniden ba\u015flat\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_7.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3932\" alt=\"SambaPdcInstall_7\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_7.jpg\" width=\"640\" height=\"414\" \/><\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_8.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3933\" alt=\"SambaPdcInstall_8\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_8.jpg\" width=\"640\" height=\"414\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">17. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">\u0130stemcimiz yeniden ba\u015flad\u0131\u011f\u0131nda &#8220;Ba\u015flat&gt;Y\u00f6netimsel Ara\u00e7lar&#8221; yolunu izledi\u011fimizde etki alan\u0131 y\u00f6netim ara\u00e7lar\u0131m\u0131z\u0131n geldi\u011fini g\u00f6rece\u011fiz. <\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_9.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3934\" alt=\"SambaPdcInstall_9\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_9.jpg\" width=\"375\" height=\"480\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">18. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Samba etki alan\u0131 y\u00f6neticimizde DNS y\u00f6netimi &#8220;Active Directory&#8221; ile b\u00fct\u00fcnle\u015fik y\u00f6netilmektedir. Ancak kurulum a\u015famas\u0131nda &#8220;Reverse Zone&#8221; otomatik olu\u015fmamaktad\u0131r. Bunu kendimiz Windows \u00fczerindeki DNS Y\u00f6netimsel arac\u0131 ile yapabiliriz. Bunun i\u00e7in &#8220;Ba\u015flat&gt;Y\u00f6netimsel Ara\u00e7lar&gt;DNS&#8221; yolunu izleyerek y\u00f6netim konsolumuzu a\u00e7\u0131yoruz ve Samba etki alan\u0131 y\u00f6netimizin ad\u0131n\u0131 yaz\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_10.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3936\" alt=\"SambaPdcInstall_10\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_10.jpg\" width=\"640\" height=\"327\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">19.<span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\"> A\u00e7\u0131lan Dns Y\u00f6netim Konsolumuzda &#8220;Reverse Lookup Zone&#8221; se\u00e7ene\u011fine gelerek \u00fczerinde sa\u011f t\u0131kl\u0131yoruz ve &#8220;New Zone&#8221; se\u00e7ene\u011fini se\u00e7iyoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_11.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3937\" alt=\"SambaPdcInstall_11\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_11.jpg\" width=\"640\" height=\"416\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">20. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Yeni &#8220;Reverse Lookup Zone&#8221; olu\u015fturma ekran\u0131n\u0131 &#8220;Next&#8221; d\u00fc\u011fmesine t\u0131klarak ge\u00e7iyoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_12.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3938\" alt=\"SambaPdcInstall_12\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_12.jpg\" width=\"640\" height=\"416\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">21. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Mevcut &#8220;Reverse Lookup Zone&#8221; olmad\u0131\u011f\u0131 i\u00e7in &#8220;Primary Zone&#8221; olarak olu\u015fturaca\u011f\u0131z.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_13.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3939\" alt=\"SambaPdcInstall_13\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_13.jpg\" width=\"640\" height=\"416\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">22. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Bir forest alan\u0131m\u0131z olmad\u0131\u011f\u0131 ve sadece bu etki alan\u0131m\u0131za ait bir &#8220;Reverse Lookup Zone&#8221; b\u00f6lgesi olu\u015fturaca\u011f\u0131m\u0131z i\u00e7in &#8220;&#8230; in this domain: koraykey.net&#8221; se\u00e7ene\u011fini se\u00e7iyoruz ve &#8220;Next&#8221; d\u00fc\u011fmesine t\u0131kl\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_14.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3940\" alt=\"SambaPdcInstall_14\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_14.jpg\" width=\"640\" height=\"416\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">23. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Dns kay\u0131tlar\u0131m\u0131z &#8220;IPv4 Reverse Lookup Zone&#8221; olaca\u011f\u0131 i\u00e7in bu se\u00e7ene\u011fi se\u00e7iyoruz ve &#8220;Next&#8221; d\u00fc\u011fmesine t\u0131kl\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_15.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3941\" alt=\"SambaPdcInstall_15\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_15.jpg\" width=\"640\" height=\"416\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">24. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">&#8220;Reverse Lookup Zone&#8221; i\u00e7in subnet adresimizi yaz\u0131yoruz. Bu ayn\u0131 zamanda olu\u015fturaca\u011f\u0131 &#8220;Reverse Lookup Zone&#8221; dosyas\u0131n\u0131n ad\u0131 olacakt\u0131r.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_16.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3942\" alt=\"SambaPdcInstall_16\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_16.jpg\" width=\"640\" height=\"416\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">25. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Adreslerimiz g\u00fcvenli bir \u015fekilde g\u00fcncellenmelidir. Active Directory ortamlar\u0131nda \u00f6nerilen se\u00e7ene\u011fimiz bu oldu\u011fu i\u00e7in i\u015faretliyoruz ve &#8220;Next&#8221; d\u00fc\u011fmesine t\u0131kl\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_17.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3943\" alt=\"SambaPdcInstall_17\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_17.jpg\" width=\"640\" height=\"416\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">26. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">&#8220;Reverse Lookup Zone&#8221; olu\u015fturma i\u015flemimizi tamamlamak i\u00e7in &#8220;Finish&#8221; d\u00fc\u011fmesine t\u0131kl\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_18.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3944\" alt=\"SambaPdcInstall_18\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_18.jpg\" width=\"640\" height=\"416\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">27. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">DNS y\u00f6netim arac\u0131m\u0131zla etki alan\u0131m\u0131z\u0131n DNS y\u00f6netimi i\u015flemlerini belli k\u0131s\u0131tlarla yapabiliriz. Bu ara\u00e7la kay\u0131tlar olu\u015fturabilir veya silebiliriz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_19.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3945\" alt=\"SambaPdcInstall_19\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_19.jpg\" width=\"640\" height=\"416\" \/><\/a><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Yapt\u0131\u011f\u0131m\u0131z DNS de\u011fi\u015fikliklerinin ge\u00e7erli olabilmesi i\u00e7in Samba Etki Alan\u0131 sunucumuzda &#8220;bind&#8221; (DNS) servisimizi yeniden ba\u015flat\u0131yoruz.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">[root@koraykey-pdc ~]# service named restart<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Stopping named: .[  OK  ]<\/span>\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">Starting named: [  OK  ]<\/span><\/pre>\n<p style=\"text-align: justify;\">28. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Etki alan\u0131m\u0131zda kullan\u0131c\u0131lar\u0131n y\u00f6netimi i\u00e7in &#8220;Ba\u015flat&gt;Y\u00f6netimsel Ara\u00e7lar&gt;Active Directory Users and Comupters&#8221; program\u0131n\u0131 \u00e7al\u0131\u015ft\u0131r\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_20.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3946\" alt=\"SambaPdcInstall_20\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_20.jpg\" width=\"640\" height=\"381\" \/><\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_21.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3947\" alt=\"SambaPdcInstall_21\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_21.jpg\" width=\"640\" height=\"381\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">29. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Windows istemcilerimiz i\u00e7in G\u00fcvenlik Politikalar\u0131 (Group Policy) olu\u015fturabiliriz. Bunun i\u00e7in &#8220;Ba\u015flat&gt;Y\u00f6netimsel Ara\u00e7lar&gt;Group Policy Management&#8221; yolundan y\u00f6netim konsolumuzu \u00e7al\u0131\u015ft\u0131r\u0131yoruz. Burada olu\u015fturaca\u011f\u0131m\u0131z g\u00fcvenlik politikalar\u0131m\u0131z ve kullan\u0131c\u0131lar\u0131n a\u00e7\u0131l\u0131\u015f-kapan\u0131\u015f scriptleri Linux \u00fczerinde kurdu\u011fumuz Samba Etki Alan\u0131 denetleyici sunucumuzda depolanacakt\u0131r.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_22.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3948\" alt=\"SambaPdcInstall_22\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_22.jpg\" width=\"640\" height=\"388\" \/><\/a><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_23.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3949\" alt=\"SambaPdcInstall_23\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/SambaPdcInstall_23.jpg\" width=\"640\" height=\"437\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">30. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Windows istemciden sonra Linux i\u015fletim sistemli istemcileri etki alan\u0131na \u00fcye yapma i\u015flemini inceleyelim. \u0130\u015fletim sistemimizde gerekli olan kerberos, samba paketlerini ve ba\u011f\u0131ml\u0131l\u0131klar\u0131n\u0131 kuruyoruz.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- \u00d6ncelikle sistemimizde bulunan eski \"samba\" paketlerini kald\u0131r\u0131yoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># yum -y remove samba*<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- Sistemimize \"samba4\" ve kimlik do\u011frulama i\u00e7in \"kerberos\" paketlerini kuruyoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># yum -y install samba4* krb5*<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\">-- \u0130stemcimizi etki alan\u0131na \u00fcye yapmadan \u00f6nce sistemimizi yeniden ba\u015flat\u0131yoruz.<\/span>\r\n\r\n<span style=\"font-family: courier new,courier; font-size: 12px;\"># shutdown -r now<\/span><\/pre>\n<p style=\"text-align: justify;\">31. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">\u0130\u015fletim sistemimizin grafik aray\u00fcz\u00fcnden (GUI) \u201cSystem &gt; Administration &gt; Authentication\u201d yolunu izleyerek yap\u0131land\u0131rma program\u0131m\u0131z\u0131 a\u00e7\u0131yoruz. Bu i\u015flemi kesinlikle etki alan\u0131 y\u00f6neticimiz (koraykey-pdc.koraykey.net) \u00fczerinde yapmamal\u0131y\u0131z. Aksi takdirde etki alan\u0131 y\u00f6neticimiz bozulacakt\u0131r.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_1.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3958\" alt=\"Kerberos_Install_1\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_1.jpg\" width=\"542\" height=\"488\" srcset=\"https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_1.jpg 542w, https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_1-533x480.jpg 533w\" sizes=\"auto, (max-width: 542px) 100vw, 542px\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">32. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">A\u00e7\u0131lan aray\u00fczde varsay\u0131lan olarak kimlik do\u011frulama y\u00f6ntemi yerel hesaplar olarak gelmektedir. Buradan \u201cUser Account Database\u201d se\u00e7ene\u011fini \u201cWinbind\u201d olarak se\u00e7iyoruz ve a\u015fa\u011f\u0131daki gibi de\u011fi\u015fkenleri kendi sistemize g\u00f6re ayarl\u0131yoruz. Burada etki alan\u0131 ismini b\u00fcy\u00fck harflerle yazmal\u0131y\u0131z. Burada &#8220;Winbind Domain Controllers&#8221; alan\u0131na etki alan\u0131 y\u00f6neticimizi yazmal\u0131y\u0131z ancak birden fazla var ise &#8220;*&#8221; i\u015fareti koyabiliriz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_2.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3959\" alt=\"Kerberos_Install_2\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_2.jpg\" width=\"459\" height=\"611\" srcset=\"https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_2.jpg 459w, https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_2-360x480.jpg 360w\" sizes=\"auto, (max-width: 459px) 100vw, 459px\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">33. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Yap\u0131land\u0131rma ekran\u0131m\u0131zdan \u201cAdvanced Options\u201d sekmesine ge\u00e7erek \u201cOther Authentication\u201d se\u00e7ene\u011finde \u201cCreate home directories on the first login\u201d kutucu\u011funu i\u015faretliyoruz. Bu se\u00e7enekle Linux sistemimizde oturum a\u00e7t\u0131\u011f\u0131m\u0131zda \u201chome\u201d klas\u00f6r\u00fcm\u00fcz olu\u015facakt\u0131r aksi takdirde oturum a\u00e7arken hata verecektir.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_3.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3960\" alt=\"Kerberos_Install_3\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_3.jpg\" width=\"459\" height=\"611\" srcset=\"https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_3.jpg 459w, https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_3-360x480.jpg 360w\" sizes=\"auto, (max-width: 459px) 100vw, 459px\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">34.<span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Tekrar \u201cIdentity &amp; Authentication\u201d sekmesine geri d\u00f6nd\u00fc\u011f\u00fcm\u00fczde bize yapt\u0131\u011f\u0131m\u0131z de\u011fi\u015fiklikleri kaydetmek istedi\u011fimizi soruyor burada \u201cSave\u201d d\u00fc\u011fmesine t\u0131kl\u0131yoruz ve alt k\u0131s\u0131mda bulunan \u201cJoin Domain\u201d d\u00fc\u011fmesine t\u0131kl\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_4.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3961\" alt=\"Kerberos_Install_4\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_4.jpg\" width=\"499\" height=\"611\" srcset=\"https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_4.jpg 499w, https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_4-392x480.jpg 392w\" sizes=\"auto, (max-width: 499px) 100vw, 499px\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">35. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Etki alan\u0131na istemcimizi \u00fcye yapmak i\u00e7in Etki Alan\u0131 y\u00f6netici hesab\u0131 ve parolas\u0131n\u0131 giriyoruz ard\u0131ndan \u201cOK\u201d d\u00fc\u011fmesine t\u0131kl\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_5.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3962\" alt=\"Kerberos_Install_5\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_5.jpg\" width=\"462\" height=\"611\" srcset=\"https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_5.jpg 462w, https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_5-362x480.jpg 362w\" sizes=\"auto, (max-width: 462px) 100vw, 462px\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">36. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Etki alan\u0131na \u00fcye olma i\u015flemi tamamland\u0131. \u201cApply\u201d d\u00fc\u011fmesine t\u0131kl\u0131yoruz ve istemcimizi yeniden ba\u015flat\u0131yoruz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_6.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3963\" alt=\"Kerberos_Install_6\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_6.jpg\" width=\"462\" height=\"611\" srcset=\"https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_6.jpg 462w, https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_6-362x480.jpg 362w\" sizes=\"auto, (max-width: 462px) 100vw, 462px\" \/><\/a><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_7.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3964\" alt=\"Kerberos_Install_7\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_7.jpg\" width=\"520\" height=\"250\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">37. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">\u0130stemcimiz yeniden a\u00e7\u0131ld\u0131\u011f\u0131nda \u201cother\u201d se\u00e7ene\u011fini se\u00e7erek etki alan\u0131 kullan\u0131c\u0131 ad\u0131 ve parolam\u0131z\u0131 giriyoruz. Grafik ekranda oturum a\u00e7t\u0131\u011f\u0131m\u0131z gibi \u201cSSH\u201d ba\u011flant\u0131s\u0131 ile ayn\u0131 \u015fekilde oturum a\u00e7abiliriz.<br \/>\n<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_8.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3965\" alt=\"Kerberos_Install_8\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_8.jpg\" width=\"520\" height=\"383\" \/><\/a><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_9.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3966\" alt=\"Kerberos_Install_9\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_9.jpg\" width=\"520\" height=\"383\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">38. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Etki alan\u0131 kullan\u0131c\u0131m\u0131z ile oturum a\u00e7t\u0131k \u015fimdi sistemimizde \u00e7al\u0131\u015fabiliriz.<\/span><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_10.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3967\" alt=\"Kerberos_Install_10\" src=\"http:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_10.jpg\" width=\"1024\" height=\"614\" srcset=\"https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_10.jpg 1024w, https:\/\/www.koraykey.com\/wp-content\/uploads\/Kerberos_Install_10-640x383.jpg 640w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/p>\n<p style=\"text-align: justify;\">39. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">E\u011fer bu i\u015flemleri komut istemcisinden yapmak istiyorsak <a title=\"Linux \u0130\u015fletim Sistemlerinde Kerberos ile Kimlik Do\u011frulama (Active Directory Entegrasyon)\" href=\"http:\/\/www.koraykey.com\/?p=776\">&#8220;Linux \u0130\u015fletim Sistemlerinde Kerberos ile Kimlik Do\u011frulama (Active Directory Entegrasyon)&#8221;<\/a> makalemizden yararlanabilirsiniz.<\/span><\/p>\n<p style=\"text-align: justify;\">40. <span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Etki Alan\u0131 Sunucumuzun yede\u011fini almak veya yedekten d\u00f6nme i\u015flemleri i\u00e7in a\u015fa\u011f\u0131daki ad\u0131mlar\u0131 izlemeliyiz.<\/span><\/p>\n<pre class=\"brush: bash; gutter: false; first-line: 1\"><span style=\"font-family: courier new,courier; font-size: 12px;\">-- Samba Etki Alan\u0131 sunucumuzun yede\u011fini almak i\u00e7in\r\n\r\n-- Yedeklerimizin al\u0131naca\u011f\u0131 dizini yarat\u0131yoruz\r\n\r\n# mkdir -p \/u01\/samba_backups\r\n\r\n-- Yedekleme script'ini derleme yapt\u0131\u011f\u0131m\u0131z dizinden \"\/usr\/local\/samba\/sbin\" \r\ndizinine kopyal\u0131yoruz.\r\n\r\n# cp \/u01\/samba-master\/source4\/scripting\/bin\/samba_backup \/usr\/local\/samba\/sbin\r\n\r\n-- Yedekleme script'imiz \u00fczerinde root kullan\u0131c\u0131s\u0131 i\u00e7in yetkilendirme yap\u0131yoruz.\r\n\r\n# chown root:root \/usr\/local\/samba\/sbin\r\n\r\n-- Yedekleme script'imiz \u00fczerinde gerekli izinleri veriyoruz.\r\n\r\n# chmod 750 \/usr\/sbin\/samba_backup\r\n\r\n-- Yedekleme script'imizi a\u00e7\u0131yoruz ve \"WHERE\" de\u011fi\u015fkenini yedekleme alaca\u011f\u0131m\u0131z \r\ndizine ayarl\u0131yoruz.\r\n\r\n# vim \/usr\/local\/samba\/sbin\/samba_backup\r\n\r\nFROMWHERE=\/usr\/local\/samba\r\nWHERE=\/u01\/samba_backups\r\n\r\n-- Yedekleme i\u015flemi yapmak i\u00e7in script'imizi \u00e7al\u0131\u015ft\u0131r\u0131yoruz.\r\n\r\n# samba_backup\r\n\r\n-- Otomatik yedekleme i\u015flemi i\u00e7in \"cron\" \u00fczerinde g\u00f6rev at\u0131yoruz.\r\nBu g\u00f6revle herg\u00fcn gece saat 2'de yedekleme i\u015flemi ba\u015flayacakt\u0131r.\r\n\r\n# crontab -e\r\n\r\n0 2 * * *       \/usr\/local\/samba\/sbin\/samba_backup\r\n\r\n-- Samba Etki Alan\u0131 sunucumuzun yedekten d\u00f6nmek i\u00e7in\r\n\r\n-- \u00c7al\u0131\u015fan \"samba\" programlar\u0131n\u0131 durduruyoruz.\r\n\r\n# killall samba\r\n\r\n-- Mevcut \"samba\" dizinlerimizi siliyoruz.\r\n\r\n# rm -rf \/usr\/local\/samba\/etc\r\n# rm -rf \/usr\/local\/samba\/private\r\n# rm -rf \/usr\/local\/samba\/var\/locks\/sysvol\r\n\r\n-- Yedekten d\u00f6nme i\u015flemini ba\u015flat\u0131yoruz. Burada {Timestamp} de\u011fi\u015fkenini yedek\r\ndosyam\u0131zdaki tarih bilgisini yaz\u0131yoruz.\r\n\r\n# cd \/u01\/samba_backups\r\n# tar -jxf etc.{Timestamp}.tar.bz2 -C \/usr\/local\/samba\/\r\n# tar -jxf samba4_private.{Timestamp}.tar.bz2 -C \/usr\/local\/samba\/\r\n# tar -jxf sysvol.{Timestamp}.tar.bz2 -C \/usr\/local\/samba\/\r\n# samba_upgradedns --dns-backend=BIND9_DLZ<\/span><\/pre>\n<p style=\"text-align: justify;\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Bu makalemizde &#8220;Linux \u0130\u015fletim Sistemlerinde Birincil Etki Alan\u0131 Sunucu Yap\u0131land\u0131rmas\u0131 (Samba Domain Controller)&#8221; yap\u0131land\u0131rmas\u0131n\u0131 inceledik. Bu makalemiz ile tamamen Linux tabanl\u0131 bir i\u015fletim sisteminden Active Directory Hizmeti veren bir sunucu kurulumunu inceledik. Tam bir etki alan\u0131 kurulumu i\u00e7in gerekli olan t\u00fcm i\u015flemleri ad\u0131m ad\u0131m uygulad\u0131k. Samba ile bir dosya sunucusu (file server) yap\u0131land\u0131rmak istersek <a title=\"Linux \u0130\u015fletim Sistemlerinde Dosya Sunucusu Yap\u0131land\u0131rmas\u0131 (Samba \/ Cifs File Server)\" href=\"http:\/\/www.koraykey.com\/?p=744\">&#8220;Linux \u0130\u015fletim Sistemlerinde Dosya Sunucusu Yap\u0131land\u0131rmas\u0131 (Samba \/ Cifs File Server)&#8221;<\/a> ayr\u0131ca Samba ile bir yaz\u0131c\u0131 sunucusu (print server) yap\u0131land\u0131rmak istersek <a title=\"Linux \u0130\u015fletim Sistemlerinde Yaz\u0131c\u0131 Sunucusu Yap\u0131land\u0131rmas\u0131 (Samba Print Server)\" href=\"http:\/\/www.koraykey.com\/?p=4149\">&#8220;Linux \u0130\u015fletim Sistemlerinde Yaz\u0131c\u0131 Sunucusu Yap\u0131land\u0131rmas\u0131 (Samba Print Server)&#8221;<\/a> makalelerimizden yararlanabilirsiniz. Yukar\u0131daki kurulum i\u015flemleri Centos Linux 6.4, Red Hat Enterprise Linux 6.4 ve Oracle Enterprise Linux 6.4 i\u015fletim sistemlerinde denenmi\u015ftir.<br \/>\n<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-family: arial,helvetica,sans-serif; font-size: 12px;\">Ba\u015fka bir makalede g\u00f6r\u00fc\u015fmek \u00fczere\u2026<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Bu makalemizde &#8220;Linux \u0130\u015fletim Sistemlerinde Birincil Etki Alan\u0131 Sunucu Yap\u0131land\u0131rmas\u0131 (Samba Domain Controller)&#8221; konusunu inceleyece\u011fiz. Kurulum i\u015flemimizi &#8220;CentOS Linux 6.4 \u0130\u015fletim Sistemi&#8221; \u00fczerinde ger\u00e7ekle\u015ftirece\u011fiz. Kurulum ad\u0131mlar\u0131 Red Hat t\u00fcrevi i\u015fletim sistemleri ile olduk\u00e7a benzerdir. Samba Nedir ? Samba, Linux\/Unix i\u015fletim &hellip; <a href=\"https:\/\/www.koraykey.com\/?p=3842\">Okumaya devam et <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[469,518,718,21,290,20,19,509,464,472,770,467,511,510,720,466,478,76,474,483,480,476,484,486,491,487,506,72,471,493,470,488,508,473,468,465,479,475,482,481,477,485,115,505,489,492,490],"class_list":["post-3842","post","type-post","status-publish","format-standard","hentry","category-unix-linux","tag-centos-samba4-kurulumu","tag-domain-kurulumu","tag-domain-server-kurulumu","tag-h-koray-gunduz","tag-halil-koray-gunduz","tag-koray-gunduz","tag-koraykey","tag-linux-active-directory-authentication","tag-linux-active-directory-kurulumu","tag-linux-domain-controller","tag-linux-domain-controller-kurulumu","tag-linux-domain-kurulumu","tag-linux-domain-name","tag-linux-domain-server","tag-linux-domain-server-kurulumu","tag-linux-etki-alani-denetleyicisi","tag-linux-etki-alani-kurulumu","tag-linux-kerberos","tag-linux-ldap-kurulumu","tag-linux-pdc-dhcp","tag-linux-pdc-dns","tag-linux-pdc-kurulumu","tag-linux-pdc-ntp","tag-linux-samba-backup","tag-linux-samba-domain","tag-linux-samba-group-policy","tag-linux-samba-kullanimi","tag-linux-samba-kurulumu","tag-oel-samba4-kurulumu","tag-oracle-linux-samba4-kurulumu","tag-red-hat-samba4-kurulumu","tag-samba-backup-recovery","tag-samba-dns-ayarlari","tag-samba-domain-controller","tag-samba-domain-kurulumu","tag-samba-etki-alani-denetleyicisi","tag-samba-etki-alani-kurulumu","tag-samba-ldap-kurulumu","tag-samba-pdc-dhcp","tag-samba-pdc-dns","tag-samba-pdc-kurulumu","tag-samba-pdc-ntp","tag-samba-server-kurulumu","tag-samba-sunucu-kurulumu","tag-samba-yedekleme","tag-server-domain","tag-windows-samba-domain"],"_links":{"self":[{"href":"https:\/\/www.koraykey.com\/index.php?rest_route=\/wp\/v2\/posts\/3842","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.koraykey.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.koraykey.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.koraykey.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.koraykey.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3842"}],"version-history":[{"count":0,"href":"https:\/\/www.koraykey.com\/index.php?rest_route=\/wp\/v2\/posts\/3842\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.koraykey.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3842"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.koraykey.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3842"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.koraykey.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3842"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}