You could use TranquiITs repo: Index of /redhat8
Or for version9: Index of /redhat9
Finally, you could use Nico’s github page and build them yourself: GitHub - nkadel/samba4repo: Wrapper for SRPM building tools for Samba with domain controller on RHEL and Fedora
Rpm, no build, EL8 upstream, not Samba source, Heimdal, not MIT. There isn’t any, right?
For the part I’m concerned, I take the last samba src.rpm, from Rocky Linux (EL8) or CentOS Stream (EL9), update the dependencies and rebuild it with dc option enabled.
It’s simple, fast and efficient if you accept the option to have MIT Kerberos instead of Heimdal for DC.
There will be no EL8 or EL9 upstream with Heimdal because MIT is the Kerberos version found and fully integrated on enterprise distributions.
That is one reason, I think another reason is they want to lock you into their inferior freeipa, yes freeipa is good at what it does, but it isn’t AD and never will be.
I agree with both, noting that the best tool in freeipa is directory server, robust and resilient.
On the other hand, AD DC support for samba is regularly tested in Fedora.
Is there any way you can contribute your work to the above mentioned package request so that the rpm source becomes more “official”? Not that your repo doesn’t work perfectly. I think rebuilds would become automatic on new releases. I’d like to include DC functionality in a distro. Thanks. PS: at least for EL8.
Well, my repository is a personal effort given to the community for free and I migrated to EL9 for my samba environment.
I could contribute to the mentioned package request, but I need to learn how to do it first and then get the required credentials, maybe you should contribute too?
mock --init
wget https://dl.rockylinux.org/pub/rocky/9/AppStream/x86_64/os/Packages/p/python3-pyasn1-0.4.8-6.el9.noarch.rpm
wget https://download.copr.fedorainfracloud.org/results/ligenix/enterprise-samba-AD-DC/epel-8-x86_64/08158369-krb5/krb5-devel-1.19.2-3.el8_10.addc.x86_64.rpm
wget https://download.copr.fedorainfracloud.org/results/ligenix/enterprise-samba-AD-DC/epel-8-x86_64/08158369-krb5/krb5-server-1.19.2-3.el8_10.addc.x86_64.rpm
wget https://download.copr.fedorainfracloud.org/results/ligenix/enterprise-samba-AD-DC/epel-8-x86_64/08158369-krb5/krb5-libs-1.19.2-3.el8_10.addc.x86_64.rpm
wget https://download.copr.fedorainfracloud.org/results/ligenix/enterprise-samba-AD-DC/epel-8-x86_64/08158369-krb5/libkadm5-1.19.2-3.el8_10.addc.x86_64.rpm
wget https://download.copr.fedorainfracloud.org/results/ligenix/enterprise-samba-AD-DC/epel-8-x86_64/08158369-krb5/krb5-pkinit-1.19.2-3.el8_10.addc.x86_64.rpm
mock --install ./python3-pyasn1-0.4.8-6.el9.noarch.rpm
mock --install ./krb5*.rpm ./libkadm*.rpm
wget https://download.rockylinux.org/pub/rocky/8/BaseOS/source/tree/Packages/s/samba-4.19.4-5.el8_10.src.rpm
mock -r rocky+epel-8-x86_64 --no-clean --enablerepo=devel rebuild --define 'dist .el8_10.dc' --with dc samba-4.19.4-5.el8_10.src.rpm
Builds current upstream ad dc enabled samba to /var/lib/mock/rocky+epel-8-x86_64/result/