Rican, Joshua T Civ USAF AF ISR Agency NASIC/SCXE
2013-Jan-17 02:03 UTC
[Samba] Samba AD DC initial join fails at schema replication
Date: 16Jan2013 Samba Version: 4.0.1 OS Version: RHEL 6.3 Windows OS: Server 2012 Forest/Domain: 2008r2 Replaced libnet_vampire.c (corrected ERROR: no subClassOf 'top' for 'samDomain') source [https://bugzilla.samba.org/show_bug.cgi?id=8680] #/usr/lobal/bin/samba-tool domain join <dnsdomain> DC -U administrator Identifies DC, joins the domain and performs adding SPNs to the Domain Controllers OU ..... Setting account password for RHELDC1$ Enabling account Calling bare provision No IPv6 address will be assigned Provision OK for domain DN <dnsdomain> Starting replication Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[402] linked_values[0] Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[802] linked_values[0] Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[1206] linked_values[0] Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[1593] linked_values[0] Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[1688] linked_values[0] Analyze and apply schema objects Can't continue Schema load: didn't manage to convert any objects: all 22 remaining of 1688 objects failed to convert Join failed - cleaning up ..... -d 1 returns several messages (some of the messages follow (would include more but I have to handjam them out), all of the messages state a failure to convert into ldb msg): ../source4/dsdb/schema/schema_syntax.c:1076: Unknown attributeID_id 0x000908BA Warning: Failed to convert schema object CN=Computer,CN=Schema,CN=Configuration,<dnsdomain> into ldb msg ../source4/dsdb/schema/schema_syntax.c:1076: Unknown attributeID_id 0x000908A5 Warning: Failed to convert schema object CN=RID-Manager,CN=Schema,CN=Configuration,<dnsdomain> into ldb msg ../source4/dsdb/schema/schema_syntax.c:1021: Unknown governsID_id 0x000A010D Warning: Failed to convert schema object CN=ms-DS-Claim-Type,CN=Schema,CN=Configuration,<dnsdomain> into ldb msg
Matthieu Patou
2013-Jan-17 21:57 UTC
[Samba] Samba AD DC initial join fails at schema replication
On 01/16/2013 06:03 PM, Rican, Joshua T Civ USAF AF ISR Agency NASIC/SCXE wrote:> Date: 16Jan2013 > Samba Version: 4.0.1 > OS Version: RHEL 6.3 > Windows OS: Server 2012 > Forest/Domain: 2008r2 > > Replaced libnet_vampire.c (corrected ERROR: no subClassOf 'top' for 'samDomain') source [https://bugzilla.samba.org/show_bug.cgi?id=8680] > > #/usr/lobal/bin/samba-tool domain join <dnsdomain> DC -U administrator > > Identifies DC, joins the domain and performs adding SPNs to the Domain Controllers OU > ..... > Setting account password for RHELDC1$ > > Enabling account > > Calling bare provision > > No IPv6 address will be assigned > > Provision OK for domain DN <dnsdomain> > > Starting replication > > Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[402] linked_values[0] > > Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[802] linked_values[0] > > Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[1206] linked_values[0] > > Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[1593] linked_values[0] > > Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[1688] linked_values[0] > > Analyze and apply schema objects > > Can't continue Schema load: didn't manage to convert any objects: all 22 remaining of 1688 objects failed to convert > > Join failed - cleaning up > > ..... > > -d 1 returns several messages (some of the messages follow (would include more but I have to handjam them out), all of the messages state a failure to convert into ldb msg): > > ../source4/dsdb/schema/schema_syntax.c:1076: Unknown attributeID_id 0x000908BA > > Warning: Failed to convert schema object CN=Computer,CN=Schema,CN=Configuration,<dnsdomain> into ldb msg > > ../source4/dsdb/schema/schema_syntax.c:1076: Unknown attributeID_id 0x000908A5 > > Warning: Failed to convert schema object CN=RID-Manager,CN=Schema,CN=Configuration,<dnsdomain> into ldb msg > > ../source4/dsdb/schema/schema_syntax.c:1021: Unknown governsID_id 0x000A010D > > Warning: Failed to convert schema object CN=ms-DS-Claim-Type,CN=Schema,CN=Configuration,<dnsdomain> into ldb msg >That's a known issue I have a patch for this it was working back in October and it's in my todo to restest it, ping me in a couple of days, for the moment you need not to have Windows 2012 schema. That is to say never join a Windows 2012 server to your domain. -- Matthieu Patou Samba Team http://samba.org
Possibly Parallel Threads
- samba 4 domain join to win 2008r2 level DC w/ a schema with exchange 2010 extensions: replication after the join is broken
- Failure to join existing domain Windows 2003 Server domain
- Schema Change Breaks Replication
- Unable to transfer ForestDns/DomainDNS
- Bind9 Flat to Bind9 DLZ