1
#!/bin/bash
2

3
set -e
4

5
info () {
6
    echo "[INFO] $@"
7
}
8

9
info "Running setup"
10

11
# Check if samba is setup
12
[ -f /var/lib/samba/.setup ] && info "Already setup..." && exit 0
13

14
info "Provisioning domain controller..."
15

16
info "Given admin password: ${SMB_ADMIN_PASSWORD}"
17

18
rm /etc/samba/smb.conf
19

20
samba-tool domain provision\
21
 --server-role=dc\
22
 --use-rfc2307\
23
 --dns-backend=SAMBA_INTERNAL\
24
 --realm=`hostname`\
25
 --domain=DEV-AD\
26
 --adminpass=${SMB_ADMIN_PASSWORD}\
27
 --option='server services = ldap'
28

29
mv /etc/samba/smb.conf /var/lib/samba/private/smb.conf
30

31
info "Applying LAPS schema changes..."
32
ldbadd    -H /var/lib/samba/private/sam.ldb laps-schema-add.ldif    --option="dsdb:schema update allowed"=true
33
ldbmodify -H /var/lib/samba/private/sam.ldb laps-schema-modify.ldif --option="dsdb:schema update allowed"=true
34
info "Adding LAPS test accounts..."
35
ldbadd    -H /var/lib/samba/private/sam.ldb laps-accounts.ldif
36

37
touch /var/lib/samba/.setup
38

39