Mario Codeniera
2013-Jan-28 05:45 UTC
[Samba] The RPC server is unavailable on Samba 4 clients
Hi,
I used to upgrade/migrated samba 3.3.10 to samba 3.4.17 with LDAP backend
in place, while upgrading the CentOS from 5.5 to 5.9. In place to retain
the trust relationship.
The users can able to login without re-authentication from existing
machines. Tested 3 XPs, and 3 Win7 but it takes 5-8 mins to login compared
to 1 win7 that was re-connected (disconnected from domain, restart, then
rejoin it back) from the domain 'gaara' which instantly login.
But there is a problem in connecting to the Windows Remote Administration
Tools particularly on Windows 7 but no problems encountered on Windows XP.
It displays on the 'Active Directory Domain Services' dialogue box
Naming information cannot be located because:
The RPC server is unavailable.
Contact your system administrator to verify that your domain is
properly configured and is currently online.
If you Change Domain..., it can be browse but still can't connect again it
displays
The domain gaara.kazekage.net could not be found because:
The RPC server is unavailable.
The DNS and Kerberos were tested okay but got error when using smbclient,
eve disabled the firewall and the selinux.
#/usr/local/samba/bin/smbclient //localhost/netlogon -Uadministrator which
displays
Connection to localhost failed (Error NT_STATUS_CONNECTION_REFUSES)
Please see below for some logs that I got for more information (Sorry for a
long posting of logs). I also run on CentOS 6.3 which doesn't have
problems on RSAT except for trust relationship which need to be recheck coz
I change hostname, domain et al.
Hope someone can give insights about it. Thanks.
Mario
(In Windows 7)
C:\Users\administrator>dcdiag /v /s:gaara
Directory Server Diagnosis
Performing initial setup:
* Connecting to directory service on server gaara.
* Identified AD Forest.
Collecting AD specific global data
* Collecting site info.
Calling
ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=gaara,DC=sandbo
x,DC=net,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
The previous call succeeded
Iterating through the sites
Looking at base site object: CN=NTDS Site
Settings,CN=Default-First-Site-Name
,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
Getting ISTG and options for the site
* Identifying all servers.
Calling
ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=gaara,DC=sandbo
x,DC=net,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
The previous call succeeded....
The previous call succeeded
Iterating through the list of servers
Getting information for the server CN=NTDS
Settings,CN=SHUKA-KU,CN=Servers,CN
=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
objectGuid obtained
InvocationID obtained
dnsHostname obtained
site info obtained
All the info for the server collected
* Identifying all NC cross-refs.
Got error while checking if the DC is using FRS or DFSR. Error:
A device attached to the system is not functioning.The VerifyReferences,
FrsEvent and DfsrEvent tests might fail because of this error.
* Found 1 DC(s). Testing 1 of them.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\SHUKA-KU
Starting test: Connectivity
* Active Directory LDAP Services Check
Determining IP4 connectivity
* Active Directory RPC Services Check
......................... SHUKA-KU passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\SHUKA-KU
Starting test: Advertising
Fatal Error:DsGetDcName (SHUKA-KU) call failed, error 1722
The Locator could not find the server.
Printing RPC Extended Error Info:
Error Record 1, ProcessID is 2812
(DcDiag)
System Time is: 1/28/2013 1:3:0:375
Generating component is 2 (RPC runtime)
Status is 1722 The RPC server is unavailable.
Detection location is 193
Error Record 2, ProcessID is 2812
(DcDiag)
System Time is: 1/28/2013 1:3:0:375
Generating component is 5 (redirector)
Status is 64 The specified network name is no longer available.
Detection location is 190
NumberOfParameters is 2
Long val: 1441792
Unicode string: \\SHUKA-KU\PIPE\NETLOGON
......................... SHUKA-KU failed test Advertising
Test omitted by user request: CheckSecurityError
Test omitted by user request: CutoffServers
Starting test: FrsEvent
* The File Replication Service Event log test
......................... SHUKA-KU passed test FrsEvent
Starting test: DFSREvent
The DFS Replication Event Log.
Skip the test because the server is running FRS.
......................... SHUKA-KU passed test DFSREvent
Starting test: SysVolCheck
* The File Replication Service SYSVOL ready test
[SHUKA-KU] An net use or LsaPolicy operation failed with error 64,
The specified network name is no longer available..
The registry lookup failed to determine the state of the SYSVOL.
The
error returned was 0x40
"The specified network name is no longer available.". Check
the
FRS
event log to see if the SYSVOL has successfully been shared.
......................... SHUKA-KU failed test SysVolCheck
Starting test: KccEvent
* The KCC Event log test
Found no KCC errors in "Directory Service" Event log in the
last
15 min
utes.
......................... SHUKA-KU passed test KccEvent
Starting test: KnowsOfRoleHolders
Role Schema Owner = CN=NTDS
Settings,CN=SHUKA-KU,CN=Servers,CN=Default-
First-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
Role Domain Owner = CN=NTDS
Settings,CN=SHUKA-KU,CN=Servers,CN=Default-
First-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
Role PDC Owner = CN=NTDS
Settings,CN=SHUKA-KU,CN=Servers,CN=Default-Fir
st-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
Role Rid Owner = CN=NTDS
Settings,CN=SHUKA-KU,CN=Servers,CN=Default-Fir
st-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
Role Infrastructure Update Owner = CN=NTDS
Settings,CN=SHUKA-KU,CN=Serv
ers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=n
et
......................... SHUKA-KU passed test KnowsOfRoleHolders
Starting test: MachineAccount
Checking machine account for DC SHUKA-KU on DC SHUKA-KU.
Could not open pipe with [SHUKA-KU]:failed with 64:
The specified network name is no longer available.
Could not get NetBIOSDomainName
Failed can not test for HOST SPN
Failed can not test for HOST SPN
* SPN found :LDAP/shuka-ku.gaara.kazekage.net/gaara.kazekage.net
* SPN found :LDAP/shuka-ku.gaara.kazekage.net
* SPN found :LDAP/SHUKA-KU
* SPN found
:LDAP/934db69d-d72e-4604-b109-0cd0703e4d9a._msdcs.gaara.sand
box.net
* SPN found
:E3514235-4B06-11D1-AB04-00C04FC2DCD2/934db69d-d72e-4604-b1
09-0cd0703e4d9a/gaara.kazekage.net
* SPN found :HOST/shuka-ku.gaara.kazekage.net/gaara.kazekage.net
* SPN found :HOST/shuka-ku.gaara.kazekage.net
* SPN found :HOST/SHUKA-KU
* SPN found :GC/shuka-ku.gaara.kazekage.net/gaara.kazekage.net
......................... SHUKA-KU passed test MachineAccount
Starting test: NCSecDesc
* Security Permissions check for all NC's on DC SHUKA-KU.
* Security Permissions Check for
CN=Configuration,DC=gaara,DC=kazekage,DC=net
(Configuration,Version 3)
* Security Permissions Check for
CN=Schema,CN=Configuration,DC=gaara,DC=kazekage,DC=net
(Schema,Version 3)
* Security Permissions Check for
DC=gaara,DC=kazekage,DC=net
(Domain,Version 3)
* Security Permissions Check for
DC=DomainDnsZones,DC=gaara,DC=kazekage,DC=net
(NDNC,Version 3)
* Security Permissions Check for
DC=ForestDnsZones,DC=gaara,DC=kazekage,DC=net
(NDNC,Version 3)
......................... SHUKA-KU passed test NCSecDesc
Starting test: NetLogons
* Network Logons Privileges Check
[SHUKA-KU] An net use or LsaPolicy operation failed with error 64,
The specified network name is no longer available..
......................... SHUKA-KU failed test NetLogons
Starting test: ObjectsReplicated
SHUKA-KU is in domain DC=gaara,DC=kazekage,DC=net
Checking for CN=SHUKA-KU,OU=Domain
Controllers,DC=gaara,DC=kazekage,DC=ne
t in domain DC=gaara,DC=kazekage,DC=net on 1 servers
Failed to read object metadata on SHUKA-KU, error
The request is not supported.
Object is up-to-date on all servers.
Checking for CN=NTDS
Settings,CN=SHUKA-KU,CN=Servers,CN=Default-First-S
ite-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net in domain
CN=Config
uration,DC=gaara,DC=kazekage,DC=net on 1 servers
Failed to read object metadata on SHUKA-KU, error
The request is not supported.
Object is up-to-date on all servers.
......................... SHUKA-KU passed test ObjectsReplicated
Test omitted by user request: OutboundSecureChannels
Starting test: Replications
* Replications Check
* Replication Latency Check
......................... SHUKA-KU passed test Replications
Starting test: RidManager
* Available RID Pool for the Domain is 102912 to 1073741823
* shuka-ku.gaara.kazekage.net is the RID Master
* DsBind with RID Master was successful
* rIDAllocationPool is 102412 to 102911
* rIDPreviousAllocationPool is 102412 to 102911
* rIDNextRID: 102414
......................... SHUKA-KU passed test RidManager
Starting test: Services
Could not open Remote ipc to [shuka-ku.gaara.kazekage.net]: error
0x40
"The specified network name is no longer available."
......................... SHUKA-KU failed test Services
Starting test: SystemLog
* The System Event log test
Found no errors in "System" Event log in the last 60 minutes.
......................... SHUKA-KU passed test SystemLog
Test omitted by user request: Topology
Test omitted by user request: VerifyEnterpriseReferences
Starting test: VerifyReferences
The system object reference (serverReference)
CN=SHUKA-KU,OU=Domain Controllers,DC=gaara,DC=kazekage,DC=net and
backlink on
CN=SHUKA-KU,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configura
tion,DC=gaara,DC=kazekage,DC=net
are correct.
Some objects relating to the DC SHUKA-KU have problems:
[1] Problem: Missing Expected Value
Base Object:
CN=NTDS
Settings,CN=SHUKA-KU,CN=Servers,CN=Default-First-Site-Name,C
N=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
Base Object Description: "DSA Object"
Value Object Attribute Name: serverReferenceBL
Value Object Description: "SYSVOL FRS Member Object"
Recommended Action: See Knowledge Base Article: Q312862
[1] Problem: Missing Expected Value
Base Object:
CN=SHUKA-KU,OU=Domain Controllers,DC=gaara,DC=kazekage,DC=net
Base Object Description: "DC Account Object"
Value Object Attribute Name: frsComputerReferenceBL
Value Object Description: "SYSVOL FRS Member Object"
Recommended Action: See Knowledge Base Article: Q312862
......................... SHUKA-KU failed test VerifyReferences
Test omitted by user request: VerifyReplicas
Test omitted by user request: DNS
Test omitted by user request: DNS
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test
CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : gaara
Starting test: CheckSDRefDom
......................... gaara passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... gaara passed test CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
The application directory partition
DC=DomainDnsZones,DC=gaara,DC=kazekage,DC=net is missing a
security
descriptor reference domain. The administrator should set the
msDS-SD-Reference-Domain attribute on the cross reference object
CN=5e4f01b6-c795-469a-8cb8-192a6bf5c0ce,CN=Partitions,CN=Configurati
on,DC=gaara,DC=kazekage,DC=net
to the DN of a domain.
......................... DomainDnsZones failed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
The application directory partition
DC=ForestDnsZones,DC=gaara,DC=kazekage,DC=net is missing a
security
descriptor reference domain. The administrator should set the
msDS-SD-Reference-Domain attribute on the cross reference object
CN=72791d95-145c-42b4-87d4-d2683af43e04,CN=Partitions,CN=Configurati
on,DC=gaara,DC=kazekage,DC=net
to the DN of a domain.
......................... ForestDnsZones failed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Running enterprise tests on : gaara.kazekage.net
Test omitted by user request: DNS
Test omitted by user request: DNS
Starting test: LocatorCheck
Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1722
A Global Catalog Server could not be located - All GC's are down.
Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1722
A Primary Domain Controller could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(TIME_SERVER) call failed, error 1722
A Time Server could not be located.
The server holding the PDC role is down.
Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed, error
1722
A Good Time Server could not be located.
Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1722
A KDC could not be located - All the KDCs are down.
......................... gaara.kazekage.net failed test
LocatorCheck
Starting test: Intersite
Skipping site Default-First-Site-Name, this site is outside the
scope
provided by the command line arguments provided.
......................... gaara.kazekage.net passed test Intersite
(Samba4 Server)
#/usr/local/samba/sbin/samba -i -d4
Got a dns update request.
Update not allowed for unsigned packet.
Tkey handshake completed
Terminating connection - 'dns_tcp_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[dns_tcp_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
Got a dns update request.
update count is 3
Looking at record:
discard_const(update): struct dns_res_rec
name : 'W7-TEST-01.gaara.kazekage.net'
rr_type : DNS_QTYPE_AAAA (0x1C)
rr_class : DNS_QCLASS_ANY (0xFF)
ttl : 0x00000000 (0)
length : 0x0000 (0)
rdata : union dns_rdata(case 0x1C)
ipv6_record : (null)
unexpected : DATA_BLOB length=0
Got a dns update request.
Update not allowed for unsigned packet.
Got a dns update request.
update count is 3
Looking at record:
discard_const(update): struct dns_res_rec
name : 'W7-TEST-01.gaara.kazekage.net'
rr_type : DNS_QTYPE_AAAA (0x1C)
rr_class : DNS_QCLASS_ANY (0xFF)
ttl : 0x00000000 (0)
length : 0x0000 (0)
rdata : union dns_rdata(case 0x1C)
ipv6_record : (null)
unexpected : DATA_BLOB length=0
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:32:48 2013 NZDT
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:32:53 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:32:58 2013 NZDT
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_IO_TIMEOUT'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_IO_TIMEOUT]
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:03 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:08 2013 NZDT
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:13 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:18 2013 NZDT
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
ldb_wrap open of secrets.ldb
Kerberos: AS-REQ win7test-pc$@GAARA.KAZEKAGE.NET from ipv4:
192.168.93.112:49282 for
krbtgt/GAARA.KAZEKAGE.NET at GAARA.KAZEKAGE.NET
Kerberos: UNKNOWN -- win7test-pc$@GAARA.KAZEKAGE.NET: no such entry found
in hdb
Terminating connection - 'kdc_tcp_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[kdc_tcp_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
Got NTLMSSP neg_flags=0xe20882b7
NTLMSSP_NEGOTIATE_UNICODE
NTLMSSP_NEGOTIATE_OEM
NTLMSSP_REQUEST_TARGET
NTLMSSP_NEGOTIATE_SIGN
NTLMSSP_NEGOTIATE_SEAL
NTLMSSP_NEGOTIATE_LM_KEY
NTLMSSP_NEGOTIATE_NTLM
NTLMSSP_NEGOTIATE_ALWAYS_SIGN
NTLMSSP_NEGOTIATE_NTLM2
NTLMSSP_NEGOTIATE_VERSION
NTLMSSP_NEGOTIATE_128
NTLMSSP_NEGOTIATE_KEY_EXCH
NTLMSSP_NEGOTIATE_56
Got user=[WIN7TEST-PC$] domain=[GAARA] workstation=[WIN7TEST-PC] len1=24
len2=310
auth_check_password_send: Checking password for unmapped user
[GAARA]\[WIN7TEST-PC$]@[WIN7TEST-PC]
auth_check_password_send: mapped user is:
[GAARA]\[WIN7TEST-PC$]@[WIN7TEST-PC]
sam_search_user: Couldn't find user [WIN7TEST-PC$] in samdb, under
DC=gaara,DC=kazekage,DC=net
auth_check_password_recv: sam_ignoredomain authentication for user
[GAARA\WIN7TEST-PC$] FAILED with
error NT_STATUS_NO_SUCH_USER
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:23 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:28 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:33 2013 NZDT
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
Browse LocalMasterAnnouncement (Op 15) on 'KAZEKAGE<1e>'
'\MAILSLOT\BROWSE'
from 192.168.93.14:138
Browse LocalMasterAnnouncement (Op 15) on 'KAZEKAGE<1e>'
'\MAILSLOT\BROWSE'
from 192.168.93.14:138
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:38 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:43 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:48 2013 NZDT
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
Couldn't find user [WIN7TEST-PC$] in samdb.
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:53 2013 NZDT
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
Terminating connection - 'wbsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[wbsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
Terminating connection - 'wbsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[wbsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:58 2013 NZDT
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:34:03 2013 NZDT
Terminating connection - 'NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[NT_STATUS_CONNECTION_DISCONNECTED]
Terminating connection - 'NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[NT_STATUS_CONNECTION_DISCONNECTED]
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:34:08 2013 NZDT
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:34:13 2013 NZDT
Browse HostAnnouncement (Op 1) on 'KAZEKAGE<1d>'
'\MAILSLOT\BROWSE' from
192.168.93.8:138
Browse HostAnnouncement (Op 1) on 'KAZEKAGE<1d>'
'\MAILSLOT\BROWSE' from
192.168.93.8:138
ldb_wrap open of secrets.ldb
ldb_wrap open of secrets.ldb
schannel_fetch_session_key_tdb: restored schannel info key
SECRETS/SCHANNEL/W7-TEST-01
Warning: 60 extra bytes in incoming RPC request
schannel_fetch_session_key_tdb: restored schannel info key
SECRETS/SCHANNEL/W7-TEST-01
schannel_store_session_key_tdb: stored schannel info with key
SECRETS/SCHANNEL/W7-TEST-01
Warning: 60 extra bytes in incoming RPC request
../source4/rpc_server/drsuapi/dcesrv_drsuapi.c:74: doing DsBind with
system_session
ldb_wrap open of secrets.ldb
added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
bcast=fe80::ffff:ffff:ffff:ffff%eth0
netmask=ffff:ffff:ffff:ffff::
added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
netmask=255.255.255.0
ldb_wrap open of secrets.ldb
Kerberos: TGS-REQ administrator at GAARA.KAZEKAGE.NET from ipv4:
192.168.93.9:65256 for
cifs/gaara.kazekage.net at GAARA.KAZEKAGE.NET [canonicalize, renewable,
forwardable]
LDB_lookup_spn_alias: no alias for service host applicable
Kerberos: Searching referral for gaara.kazekage.net
Kerberos: Returning a referral to realm KAZEKAGE.NET for server cifs/
gaara.kazekage.net at GAARA.KAZEKAGE.NET
that was not found
Failed find a single entry for
(&(objectClass=trustedDomain)(|(flatname=KAZEKAGE.NET)(trustPartnerKAZEKAGE.NET))):
got 0
Kerberos: samba_kdc_fetch: could not find principal in DB
LDB_lookup_spn_alias: no alias for service krbtgt applicable
Kerberos: Server not found in database: krbtgt/
KAZEKAGE.NET at GAARA.KAZEKAGE.NET: no such entry found in hdb
Kerberos: Failed building TGS-REP to ipv4:192.168.93.9:65256
Terminating connection - 'kdc_tcp_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[kdc_tcp_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blo
NT_STATUS_CONNECTION_DISCONNECTED]
Browse DomainAnnouncement (Op 12) on '%01%02__MSBROWSE__%02<01>'
'\MAILSLOT\BROWSE' from
192.168.93.1:138
Browse DomainAnnouncement (Op 12) on '%01%02__MSBROWSE__%02<01>'
'\MAILSLOT\BROWSE' from
192.168.93.1:138
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 14:07:50 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 14:07:55 2013 NZDT
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
Terminating connection - 'wbsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 14:08:00 2013 NZDT
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 14:08:05 2013 NZDT
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:04 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:09 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:14 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:19 2013 NZDT
Browse HostAnnouncement (Op 1) on 'GAARA<1d>'
'\MAILSLOT\BROWSE' from
192.168.93.22:138
Browse HostAnnouncement (Op 1) on 'GAARA<1d>'
'\MAILSLOT\BROWSE' from
192.168.93.22:138
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:24 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:29 2013 NZDT
dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:34 2013 NZDT
ldb_wrap open of secrets.ldb
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
NT_STATUS_CONNECTION_DISCONNECTED]
ldb_wrap open of secrets.ldb
[root at shuka-ku ~]# /usr/local/samba/sbin/samba_dnsupdate --all-names
--verbose
IPs: ['fe80::250:56ff:fe00:e2e3%eth0', '192.168.93.5']
Calling nsupdate for A gaara.kazekage.net 192.168.93.5
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
gaara.kazekage.net. 900 IN A 192.168.93.5
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for A shuka-ku.gaara.kazekage.net 192.168.93.5
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
shuka-ku.gaara.kazekage.net. 900 IN A 192.168.93.5
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for A gc._msdcs.gaara.kazekage.net 192.168.93.5
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
gc._msdcs.gaara.kazekage.net. 900 IN A 192.168.93.5
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for CNAME 934db69d-d72e-4604-b109-0cd0703e4d9a._
msdcs.gaara.kazekage.net
shuka-ku.gaara.kazekage.net
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
934db69d-d72e-4604-b109-0cd0703e4d9a._msdcs.gaara.kazekage.net. 900 IN
CNAME shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _kpasswd._tcp.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 464
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kpasswd._tcp.gaara.kazekage.net. 900 IN SRV 0 100 464
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _kpasswd._udp.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 464
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kpasswd._udp.gaara.kazekage.net. 900 IN SRV 0 100 464
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _kerberos._tcp.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 88
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.gaara.kazekage.net. 900 IN SRV 0 100 88
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _kerberos._tcp.dc._msdcs.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 88
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.dc._msdcs.gaara.kazekage.net. 900 IN SRV 0 100 88
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _kerberos._tcp.default-first-site-name._
sites.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 88
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.default-first-site-name._sites.gaara.kazekage.net. 900 IN
SRV 0 100 88
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _kerberos._tcp.default-first-site-name._sites.dc._
msdcs.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 88
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.default-first-site-name._sites.dc._msdcs.gaara.kazekage.net.
900 IN SRV 0 100 88
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _kerberos._udp.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 88
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._udp.gaara.kazekage.net. 900 IN SRV 0 100 88
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _ldap._tcp.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.gaara.kazekage.net. 900 IN SRV 0 100 389
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _ldap._tcp.dc._msdcs.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.dc._msdcs.gaara.kazekage.net. 900 IN SRV 0 100 389
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _ldap._tcp.gc._msdcs.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 3268
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.gc._msdcs.gaara.kazekage.net. 900 IN SRV 0 100 3268
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _ldap._tcp.pdc._msdcs.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.pdc._msdcs.gaara.kazekage.net. 900 IN SRV 0 100 389
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _ldap._tcp.default-first-site-name._
sites.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.default-first-site-name._sites.gaara.kazekage.net. 900 IN SRV 0
100 389
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _ldap._tcp.default-first-site-name._sites.dc._
msdcs.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.default-first-site-name._sites.dc._msdcs.gaara.kazekage.net. 900
IN SRV 0 100 389
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _ldap._tcp.default-first-site-name._sites.gc._
msdcs.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 3268
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.default-first-site-name._sites.gc._msdcs.gaara.kazekage.net. 900
IN SRV 0 100 3268
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV
_ldap._tcp.d4786a56-88a6-4e16-8654-f3d7347aa1d7.domains._
msdcs.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.d4786a56-88a6-4e16-8654-f3d7347aa1d7.domains._
msdcs.gaara.kazekage.net. 900 IN SRV 0 100 389
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _gc._tcp.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 3268
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_gc._tcp.gaara.kazekage.net. 900 IN SRV 0 100 3268
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Calling nsupdate for SRV _gc._tcp.default-first-site-name._
sites.gaara.kazekage.net
shuka-ku.gaara.kazekage.net 3268
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_gc._tcp.default-first-site-name._sites.gaara.kazekage.net. 900 IN SRV 0
100 3268
shuka-ku.gaara.kazekage.net.
; TSIG error with server: tsig verify failure
update failed: FORMERR
Failed nsupdate: 2
Failed update of 21 entries
[root at shuka-ku ~]# ls -lai /usr/local/samba/private/sam.ldb.d/
total 48184
22155416 drwx------ 2 root named 4096 Jan 24 14:18 .
21692431 drwxr-xr-x 6 root root 4096 Jan 28 14:07 ..
22155421 -rw------- 1 root named 16400384 Jan 24 14:18
CN=CONFIGURATION,DC=GAARA,DC=KAZEKAGE,DC=NET.ldb
22155422 -rw------- 1 root named 10391552 Jan 24 14:18
CN=SCHEMA,CN=CONFIGURATION,DC=GAARA,DC=KAZEKAGE,DC=NET.ldb
22155423 -rw------- 1 root named 4251648 Jan 28 10:39
DC=DOMAINDNSZONES,DC=GAARA,DC=KAZEKAGE,DC=NET.ldb
22155424 -rw------- 1 root named 4251648 Jan 24 14:18
DC=FORESTDNSZONES,DC=GAARA,DC=KAZEKAGE,DC=NET.ldb
22155420 -rw------- 1 root named 13529088 Jan 28 13:57
DC=GAARA,DC=KAZEKAGE,DC=NET.ldb
22155419 -rw-r----- 1 root named 421888 Jan 28 11:09 metadata.tdb
Mario Codeniera
2013-Jan-28 23:15 UTC
[Samba] The RPC server is unavailable on Samba 4 clients
Hi,
It seems I answered my own query here, I used to solve it and pointing to
https://bugs.launchpad.net/ubuntu/+source/samba4/+bug/1055075
what I did add the following in /usr/local/samba/etc/smb.conf
server services = +smb -s3fs
dcerpc endpoint servers = +winreg +srvsvc
everything works fine which login me instantly and use the RSAT with no
problem.
But no yet idea how those configs helps or the exact explanation.
Thanks,
Mario
On Mon, Jan 28, 2013 at 6:45 PM, Mario Codeniera
<mario.codeniera at gmail.com>wrote:
> Hi,
>
> I used to upgrade/migrated samba 3.3.10 to samba 3.4.17 with LDAP backend
> in place, while upgrading the CentOS from 5.5 to 5.9. In place to retain
> the trust relationship.
>
> The users can able to login without re-authentication from existing
> machines. Tested 3 XPs, and 3 Win7 but it takes 5-8 mins to login compared
> to 1 win7 that was re-connected (disconnected from domain, restart, then
> rejoin it back) from the domain 'gaara' which instantly login.
>
> But there is a problem in connecting to the Windows Remote Administration
> Tools particularly on Windows 7 but no problems encountered on Windows XP.
> It displays on the 'Active Directory Domain Services' dialogue box
> Naming information cannot be located because:
> The RPC server is unavailable.
> Contact your system administrator to verify that your domain is
> properly configured and is currently online.
> If you Change Domain..., it can be browse but still can't connect
again
> it displays
> The domain gaara.kazekage.net could not be found because:
> The RPC server is unavailable.
> The DNS and Kerberos were tested okay but got error when using smbclient,
> eve disabled the firewall and the selinux.
> #/usr/local/samba/bin/smbclient //localhost/netlogon -Uadministrator
> which displays
> Connection to localhost failed (Error NT_STATUS_CONNECTION_REFUSES)
>
> Please see below for some logs that I got for more information (Sorry for
> a long posting of logs). I also run on CentOS 6.3 which doesn't have
> problems on RSAT except for trust relationship which need to be recheck coz
> I change hostname, domain et al.
>
> Hope someone can give insights about it. Thanks.
>
>
> Mario
>
>
>
> (In Windows 7)
> C:\Users\administrator>dcdiag /v /s:gaara
>
> Directory Server Diagnosis
>
> Performing initial setup:
> * Connecting to directory service on server gaara.
> * Identified AD Forest.
> Collecting AD specific global data
> * Collecting site info.
> Calling
> ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=gaara,DC=sandbo
> x,DC=net,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
> The previous call succeeded
> Iterating through the sites
> Looking at base site object: CN=NTDS Site
> Settings,CN=Default-First-Site-Name
> ,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
> Getting ISTG and options for the site
> * Identifying all servers.
> Calling
> ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=gaara,DC=sandbo
> x,DC=net,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
> The previous call succeeded....
> The previous call succeeded
> Iterating through the list of servers
> Getting information for the server CN=NTDS
> Settings,CN=SHUKA-KU,CN=Servers,CN
>
>
=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
> objectGuid obtained
> InvocationID obtained
> dnsHostname obtained
> site info obtained
> All the info for the server collected
> * Identifying all NC cross-refs.
> Got error while checking if the DC is using FRS or DFSR. Error:
> A device attached to the system is not functioning.The VerifyReferences,
> FrsEvent and DfsrEvent tests might fail because of this error.
> * Found 1 DC(s). Testing 1 of them.
> Done gathering initial info.
>
> Doing initial required tests
>
> Testing server: Default-First-Site-Name\SHUKA-KU
> Starting test: Connectivity
> * Active Directory LDAP Services Check
> Determining IP4 connectivity
> * Active Directory RPC Services Check
> ......................... SHUKA-KU passed test Connectivity
>
> Doing primary tests
>
> Testing server: Default-First-Site-Name\SHUKA-KU
> Starting test: Advertising
> Fatal Error:DsGetDcName (SHUKA-KU) call failed, error 1722
> The Locator could not find the server.
> Printing RPC Extended Error Info:
> Error Record 1, ProcessID is 2812
> (DcDiag)
>
> System Time is: 1/28/2013 1:3:0:375
> Generating component is 2 (RPC runtime)
>
> Status is 1722 The RPC server is unavailable.
>
> Detection location is 193
> Error Record 2, ProcessID is 2812
> (DcDiag)
>
> System Time is: 1/28/2013 1:3:0:375
> Generating component is 5 (redirector)
>
> Status is 64 The specified network name is no longer available.
>
> Detection location is 190
> NumberOfParameters is 2
> Long val: 1441792
> Unicode string: \\SHUKA-KU\PIPE\NETLOGON
> ......................... SHUKA-KU failed test Advertising
> Test omitted by user request: CheckSecurityError
> Test omitted by user request: CutoffServers
> Starting test: FrsEvent
> * The File Replication Service Event log test
> ......................... SHUKA-KU passed test FrsEvent
> Starting test: DFSREvent
> The DFS Replication Event Log.
> Skip the test because the server is running FRS.
> ......................... SHUKA-KU passed test DFSREvent
> Starting test: SysVolCheck
> * The File Replication Service SYSVOL ready test
> [SHUKA-KU] An net use or LsaPolicy operation failed with error 64,
> The specified network name is no longer available..
> The registry lookup failed to determine the state of the SYSVOL.
> The
> error returned was 0x40
> "The specified network name is no longer available.".
Check the
> FRS
> event log to see if the SYSVOL has successfully been shared.
> ......................... SHUKA-KU failed test SysVolCheck
> Starting test: KccEvent
> * The KCC Event log test
> Found no KCC errors in "Directory Service" Event log in
the last
> 15 min
> utes.
> ......................... SHUKA-KU passed test KccEvent
> Starting test: KnowsOfRoleHolders
> Role Schema Owner = CN=NTDS
> Settings,CN=SHUKA-KU,CN=Servers,CN=Default-
> First-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
> Role Domain Owner = CN=NTDS
> Settings,CN=SHUKA-KU,CN=Servers,CN=Default-
> First-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
> Role PDC Owner = CN=NTDS
> Settings,CN=SHUKA-KU,CN=Servers,CN=Default-Fir
> st-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
> Role Rid Owner = CN=NTDS
> Settings,CN=SHUKA-KU,CN=Servers,CN=Default-Fir
> st-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
> Role Infrastructure Update Owner = CN=NTDS
> Settings,CN=SHUKA-KU,CN=Serv
>
>
ers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=n
> et
> ......................... SHUKA-KU passed test KnowsOfRoleHolders
> Starting test: MachineAccount
> Checking machine account for DC SHUKA-KU on DC SHUKA-KU.
> Could not open pipe with [SHUKA-KU]:failed with 64:
> The specified network name is no longer available.
> Could not get NetBIOSDomainName
> Failed can not test for HOST SPN
> Failed can not test for HOST SPN
> * SPN found :LDAP/shuka-ku.gaara.kazekage.net/gaara.kazekage.net
> * SPN found :LDAP/shuka-ku.gaara.kazekage.net
> * SPN found :LDAP/SHUKA-KU
> * SPN found
> :LDAP/934db69d-d72e-4604-b109-0cd0703e4d9a._msdcs.gaara.sand
> box.net
> * SPN found
> :E3514235-4B06-11D1-AB04-00C04FC2DCD2/934db69d-d72e-4604-b1
> 09-0cd0703e4d9a/gaara.kazekage.net
> * SPN found :HOST/shuka-ku.gaara.kazekage.net/gaara.kazekage.net
> * SPN found :HOST/shuka-ku.gaara.kazekage.net
> * SPN found :HOST/SHUKA-KU
> * SPN found :GC/shuka-ku.gaara.kazekage.net/gaara.kazekage.net
> ......................... SHUKA-KU passed test MachineAccount
> Starting test: NCSecDesc
> * Security Permissions check for all NC's on DC SHUKA-KU.
> * Security Permissions Check for
> CN=Configuration,DC=gaara,DC=kazekage,DC=net
> (Configuration,Version 3)
> * Security Permissions Check for
> CN=Schema,CN=Configuration,DC=gaara,DC=kazekage,DC=net
> (Schema,Version 3)
> * Security Permissions Check for
> DC=gaara,DC=kazekage,DC=net
> (Domain,Version 3)
> * Security Permissions Check for
> DC=DomainDnsZones,DC=gaara,DC=kazekage,DC=net
> (NDNC,Version 3)
> * Security Permissions Check for
> DC=ForestDnsZones,DC=gaara,DC=kazekage,DC=net
> (NDNC,Version 3)
> ......................... SHUKA-KU passed test NCSecDesc
> Starting test: NetLogons
> * Network Logons Privileges Check
> [SHUKA-KU] An net use or LsaPolicy operation failed with error 64,
> The specified network name is no longer available..
> ......................... SHUKA-KU failed test NetLogons
> Starting test: ObjectsReplicated
> SHUKA-KU is in domain DC=gaara,DC=kazekage,DC=net
> Checking for CN=SHUKA-KU,OU=Domain
> Controllers,DC=gaara,DC=kazekage,DC=ne
> t in domain DC=gaara,DC=kazekage,DC=net on 1 servers
> Failed to read object metadata on SHUKA-KU, error
> The request is not supported.
> Object is up-to-date on all servers.
> Checking for CN=NTDS
> Settings,CN=SHUKA-KU,CN=Servers,CN=Default-First-S
> ite-Name,CN=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net in domain
> CN=Config
> uration,DC=gaara,DC=kazekage,DC=net on 1 servers
> Failed to read object metadata on SHUKA-KU, error
> The request is not supported.
> Object is up-to-date on all servers.
> ......................... SHUKA-KU passed test ObjectsReplicated
> Test omitted by user request: OutboundSecureChannels
> Starting test: Replications
> * Replications Check
> * Replication Latency Check
> ......................... SHUKA-KU passed test Replications
> Starting test: RidManager
> * Available RID Pool for the Domain is 102912 to 1073741823
> * shuka-ku.gaara.kazekage.net is the RID Master
> * DsBind with RID Master was successful
> * rIDAllocationPool is 102412 to 102911
> * rIDPreviousAllocationPool is 102412 to 102911
> * rIDNextRID: 102414
> ......................... SHUKA-KU passed test RidManager
> Starting test: Services
> Could not open Remote ipc to [shuka-ku.gaara.kazekage.net]:
> error 0x40
> "The specified network name is no longer available."
> ......................... SHUKA-KU failed test Services
> Starting test: SystemLog
> * The System Event log test
> Found no errors in "System" Event log in the last 60
minutes.
> ......................... SHUKA-KU passed test SystemLog
> Test omitted by user request: Topology
> Test omitted by user request: VerifyEnterpriseReferences
> Starting test: VerifyReferences
> The system object reference (serverReference)
> CN=SHUKA-KU,OU=Domain Controllers,DC=gaara,DC=kazekage,DC=net and
> backlink on
>
> CN=SHUKA-KU,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configura
> tion,DC=gaara,DC=kazekage,DC=net
> are correct.
> Some objects relating to the DC SHUKA-KU have problems:
> [1] Problem: Missing Expected Value
> Base Object:
> CN=NTDS
> Settings,CN=SHUKA-KU,CN=Servers,CN=Default-First-Site-Name,C
> N=Sites,CN=Configuration,DC=gaara,DC=kazekage,DC=net
> Base Object Description: "DSA Object"
> Value Object Attribute Name: serverReferenceBL
> Value Object Description: "SYSVOL FRS Member Object"
> Recommended Action: See Knowledge Base Article: Q312862
>
> [1] Problem: Missing Expected Value
> Base Object:
> CN=SHUKA-KU,OU=Domain Controllers,DC=gaara,DC=kazekage,DC=net
> Base Object Description: "DC Account Object"
> Value Object Attribute Name: frsComputerReferenceBL
> Value Object Description: "SYSVOL FRS Member Object"
> Recommended Action: See Knowledge Base Article: Q312862
>
> ......................... SHUKA-KU failed test VerifyReferences
> Test omitted by user request: VerifyReplicas
>
> Test omitted by user request: DNS
> Test omitted by user request: DNS
>
> Running partition tests on : Configuration
> Starting test: CheckSDRefDom
> ......................... Configuration passed test CheckSDRefDom
> Starting test: CrossRefValidation
> ......................... Configuration passed test
> CrossRefValidation
>
> Running partition tests on : Schema
> Starting test: CheckSDRefDom
> ......................... Schema passed test CheckSDRefDom
> Starting test: CrossRefValidation
> ......................... Schema passed test CrossRefValidation
>
> Running partition tests on : gaara
> Starting test: CheckSDRefDom
> ......................... gaara passed test CheckSDRefDom
> Starting test: CrossRefValidation
> ......................... gaara passed test CrossRefValidation
>
> Running partition tests on : DomainDnsZones
> Starting test: CheckSDRefDom
> The application directory partition
> DC=DomainDnsZones,DC=gaara,DC=kazekage,DC=net is missing a
> security
> descriptor reference domain. The administrator should set the
> msDS-SD-Reference-Domain attribute on the cross reference
> object
>
> CN=5e4f01b6-c795-469a-8cb8-192a6bf5c0ce,CN=Partitions,CN=Configurati
> on,DC=gaara,DC=kazekage,DC=net
> to the DN of a domain.
> ......................... DomainDnsZones failed test CheckSDRefDom
> Starting test: CrossRefValidation
> ......................... DomainDnsZones passed test
> CrossRefValidation
>
> Running partition tests on : ForestDnsZones
> Starting test: CheckSDRefDom
> The application directory partition
> DC=ForestDnsZones,DC=gaara,DC=kazekage,DC=net is missing a
> security
> descriptor reference domain. The administrator should set the
> msDS-SD-Reference-Domain attribute on the cross reference
> object
>
> CN=72791d95-145c-42b4-87d4-d2683af43e04,CN=Partitions,CN=Configurati
> on,DC=gaara,DC=kazekage,DC=net
> to the DN of a domain.
> ......................... ForestDnsZones failed test CheckSDRefDom
> Starting test: CrossRefValidation
> ......................... ForestDnsZones passed test
> CrossRefValidation
>
> Running enterprise tests on : gaara.kazekage.net
> Test omitted by user request: DNS
> Test omitted by user request: DNS
> Starting test: LocatorCheck
> Warning: DcGetDcName(GC_SERVER_REQUIRED) call failed, error 1722
> A Global Catalog Server could not be located - All GC's are
down.
> Warning: DcGetDcName(PDC_REQUIRED) call failed, error 1722
> A Primary Domain Controller could not be located.
> The server holding the PDC role is down.
> Warning: DcGetDcName(TIME_SERVER) call failed, error 1722
> A Time Server could not be located.
> The server holding the PDC role is down.
> Warning: DcGetDcName(GOOD_TIME_SERVER_PREFERRED) call failed,
> error
> 1722
> A Good Time Server could not be located.
> Warning: DcGetDcName(KDC_REQUIRED) call failed, error 1722
> A KDC could not be located - All the KDCs are down.
> ......................... gaara.kazekage.net failed test
> LocatorCheck
> Starting test: Intersite
> Skipping site Default-First-Site-Name, this site is outside the
> scope
> provided by the command line arguments provided.
> ......................... gaara.kazekage.net passed test
> Intersite
>
>
>
>
> (Samba4 Server)
>
> #/usr/local/samba/sbin/samba -i -d4
>
> Got a dns update request.
> Update not allowed for unsigned packet.
> Tkey handshake completed
> Terminating connection - 'dns_tcp_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[dns_tcp_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> Got a dns update request.
> update count is 3
> Looking at record:
> discard_const(update): struct dns_res_rec
> name : 'W7-TEST-01.gaara.kazekage.net'
> rr_type : DNS_QTYPE_AAAA (0x1C)
> rr_class : DNS_QCLASS_ANY (0xFF)
> ttl : 0x00000000 (0)
> length : 0x0000 (0)
> rdata : union dns_rdata(case 0x1C)
> ipv6_record : (null)
> unexpected : DATA_BLOB length=0
> Got a dns update request.
> Update not allowed for unsigned packet.
> Got a dns update request.
> update count is 3
> Looking at record:
> discard_const(update): struct dns_res_rec
> name : 'W7-TEST-01.gaara.kazekage.net'
> rr_type : DNS_QTYPE_AAAA (0x1C)
> rr_class : DNS_QCLASS_ANY (0xFF)
> ttl : 0x00000000 (0)
> length : 0x0000 (0)
> rdata : union dns_rdata(case 0x1C)
> ipv6_record : (null)
> unexpected : DATA_BLOB length=0
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:32:48 2013 NZDT
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:32:53 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:32:58 2013 NZDT
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> - NT_STATUS_IO_TIMEOUT'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_IO_TIMEOUT]
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:03 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:08 2013 NZDT
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:13 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:18 2013 NZDT
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> ldb_wrap open of secrets.ldb
> Kerberos: AS-REQ win7test-pc$@GAARA.KAZEKAGE.NET from ipv4:
> 192.168.93.112:49282 for
> krbtgt/GAARA.KAZEKAGE.NET at GAARA.KAZEKAGE.NET
> Kerberos: UNKNOWN -- win7test-pc$@GAARA.KAZEKAGE.NET: no such entry found
> in hdb
> Terminating connection - 'kdc_tcp_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[kdc_tcp_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> Got NTLMSSP neg_flags=0xe20882b7
> NTLMSSP_NEGOTIATE_UNICODE
> NTLMSSP_NEGOTIATE_OEM
> NTLMSSP_REQUEST_TARGET
> NTLMSSP_NEGOTIATE_SIGN
> NTLMSSP_NEGOTIATE_SEAL
> NTLMSSP_NEGOTIATE_LM_KEY
> NTLMSSP_NEGOTIATE_NTLM
> NTLMSSP_NEGOTIATE_ALWAYS_SIGN
> NTLMSSP_NEGOTIATE_NTLM2
> NTLMSSP_NEGOTIATE_VERSION
> NTLMSSP_NEGOTIATE_128
> NTLMSSP_NEGOTIATE_KEY_EXCH
> NTLMSSP_NEGOTIATE_56
> Got user=[WIN7TEST-PC$] domain=[GAARA] workstation=[WIN7TEST-PC] len1=24
> len2=310
> auth_check_password_send: Checking password for unmapped user
> [GAARA]\[WIN7TEST-PC$]@[WIN7TEST-PC]
> auth_check_password_send: mapped user is:
> [GAARA]\[WIN7TEST-PC$]@[WIN7TEST-PC]
> sam_search_user: Couldn't find user [WIN7TEST-PC$] in samdb, under
> DC=gaara,DC=kazekage,DC=net
> auth_check_password_recv: sam_ignoredomain authentication for user
> [GAARA\WIN7TEST-PC$] FAILED with
> error NT_STATUS_NO_SUCH_USER
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:23 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:28 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:33 2013 NZDT
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> Browse LocalMasterAnnouncement (Op 15) on 'KAZEKAGE<1e>'
> '\MAILSLOT\BROWSE' from 192.168.93.14:138
> Browse LocalMasterAnnouncement (Op 15) on 'KAZEKAGE<1e>'
> '\MAILSLOT\BROWSE' from 192.168.93.14:138
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:38 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:43 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:48 2013 NZDT
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> Couldn't find user [WIN7TEST-PC$] in samdb.
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:53 2013 NZDT
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> Terminating connection - 'wbsrv_call_loop: tstream_read_pdu_blob_recv()
-
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[wbsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> Terminating connection - 'wbsrv_call_loop: tstream_read_pdu_blob_recv()
-
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[wbsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:33:58 2013 NZDT
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:34:03 2013 NZDT
> Terminating connection - 'NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[NT_STATUS_CONNECTION_DISCONNECTED]
> Terminating connection - 'NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[NT_STATUS_CONNECTION_DISCONNECTED]
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:34:08 2013 NZDT
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 17:34:13 2013 NZDT
> Browse HostAnnouncement (Op 1) on 'KAZEKAGE<1d>'
'\MAILSLOT\BROWSE' from
> 192.168.93.8:138
> Browse HostAnnouncement (Op 1) on 'KAZEKAGE<1d>'
'\MAILSLOT\BROWSE' from
> 192.168.93.8:138
> ldb_wrap open of secrets.ldb
> ldb_wrap open of secrets.ldb
> schannel_fetch_session_key_tdb: restored schannel info key
> SECRETS/SCHANNEL/W7-TEST-01
> Warning: 60 extra bytes in incoming RPC request
> schannel_fetch_session_key_tdb: restored schannel info key
> SECRETS/SCHANNEL/W7-TEST-01
> schannel_store_session_key_tdb: stored schannel info with key
> SECRETS/SCHANNEL/W7-TEST-01
> Warning: 60 extra bytes in incoming RPC request
> ../source4/rpc_server/drsuapi/dcesrv_drsuapi.c:74: doing DsBind with
> system_session
> ldb_wrap open of secrets.ldb
> added interface eth0 ip=fe80::250:56ff:fe00:e2e3%eth0
> bcast=fe80::ffff:ffff:ffff:ffff%eth0
> netmask=ffff:ffff:ffff:ffff::
> added interface eth0 ip=192.168.93.5 bcast=192.168.93.255
> netmask=255.255.255.0
> ldb_wrap open of secrets.ldb
> Kerberos: TGS-REQ administrator at GAARA.KAZEKAGE.NET from ipv4:
> 192.168.93.9:65256 for
> cifs/gaara.kazekage.net at GAARA.KAZEKAGE.NET [canonicalize, renewable,
> forwardable]
> LDB_lookup_spn_alias: no alias for service host applicable
> Kerberos: Searching referral for gaara.kazekage.net
> Kerberos: Returning a referral to realm KAZEKAGE.NET for server cifs/
> gaara.kazekage.net at GAARA.KAZEKAGE.NET
> that was not found
> Failed find a single entry for
> (&(objectClass=trustedDomain)(|(flatname=KAZEKAGE.NET)(trustPartner>
KAZEKAGE.NET))): got 0
> Kerberos: samba_kdc_fetch: could not find principal in DB
> LDB_lookup_spn_alias: no alias for service krbtgt applicable
> Kerberos: Server not found in database: krbtgt/
> KAZEKAGE.NET at GAARA.KAZEKAGE.NET: no such entry found in hdb
> Kerberos: Failed building TGS-REP to ipv4:192.168.93.9:65256
> Terminating connection - 'kdc_tcp_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[kdc_tcp_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blo
>
>
>
>
> NT_STATUS_CONNECTION_DISCONNECTED]
> Browse DomainAnnouncement (Op 12) on
'%01%02__MSBROWSE__%02<01>'
> '\MAILSLOT\BROWSE' from
> 192.168.93.1:138
> Browse DomainAnnouncement (Op 12) on
'%01%02__MSBROWSE__%02<01>'
> '\MAILSLOT\BROWSE' from
> 192.168.93.1:138
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 14:07:50 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 14:07:55 2013 NZDT
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> Terminating connection - 'wbsrv_call_loop: tstream_read_pdu_blob_recv()
-
> NT_STATUS_CONNECTION_DISCONNECTED'
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 14:08:00 2013 NZDT
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 14:08:05 2013 NZDT
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> ldb_wrap open of secrets.ldb
>
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:04 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:09 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:14 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:19 2013 NZDT
> Browse HostAnnouncement (Op 1) on 'GAARA<1d>'
'\MAILSLOT\BROWSE' from
> 192.168.93.22:138
> Browse HostAnnouncement (Op 1) on 'GAARA<1d>'
'\MAILSLOT\BROWSE' from
> 192.168.93.22:138
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:24 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:29 2013 NZDT
> dreplsrv_notify_schedule(5) scheduled for: Mon Jan 28 15:06:34 2013 NZDT
> ldb_wrap open of secrets.ldb
> Terminating connection - 'ldapsrv_call_loop:
tstream_read_pdu_blob_recv()
> -
> NT_STATUS_CONNECTION_DISCONNECTED'
> single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() -
> NT_STATUS_CONNECTION_DISCONNECTED]
> ldb_wrap open of secrets.ldb
>
>
>
>
> [root at shuka-ku ~]# /usr/local/samba/sbin/samba_dnsupdate --all-names
> --verbose
> IPs: ['fe80::250:56ff:fe00:e2e3%eth0', '192.168.93.5']
> Calling nsupdate for A gaara.kazekage.net 192.168.93.5
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> gaara.kazekage.net. 900 IN A 192.168.93.5
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for A shuka-ku.gaara.kazekage.net 192.168.93.5
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> shuka-ku.gaara.kazekage.net. 900 IN A 192.168.93.5
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for A gc._msdcs.gaara.kazekage.net 192.168.93.5
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> gc._msdcs.gaara.kazekage.net. 900 IN A 192.168.93.5
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for CNAME 934db69d-d72e-4604-b109-0cd0703e4d9a._
> msdcs.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> 934db69d-d72e-4604-b109-0cd0703e4d9a._msdcs.gaara.kazekage.net. 900 IN
> CNAME shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _kpasswd._tcp.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 464
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _kpasswd._tcp.gaara.kazekage.net. 900 IN SRV 0 100 464
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _kpasswd._udp.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 464
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _kpasswd._udp.gaara.kazekage.net. 900 IN SRV 0 100 464
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _kerberos._tcp.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 88
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _kerberos._tcp.gaara.kazekage.net. 900 IN SRV 0 100 88
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _kerberos._tcp.dc._msdcs.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 88
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _kerberos._tcp.dc._msdcs.gaara.kazekage.net. 900 IN SRV 0 100 88
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _kerberos._tcp.default-first-site-name._
> sites.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 88
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _kerberos._tcp.default-first-site-name._sites.gaara.kazekage.net. 900 IN
> SRV 0 100 88
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _kerberos._tcp.default-first-site-name._sites.dc._
> msdcs.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 88
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _kerberos._tcp.default-first-site-name._sites.dc._msdcs.gaara.kazekage.net.
> 900 IN SRV 0 100 88
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _kerberos._udp.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 88
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _kerberos._udp.gaara.kazekage.net. 900 IN SRV 0 100 88
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _ldap._tcp.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 389
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _ldap._tcp.gaara.kazekage.net. 900 IN SRV 0 100 389
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _ldap._tcp.dc._msdcs.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 389
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _ldap._tcp.dc._msdcs.gaara.kazekage.net. 900 IN SRV 0 100 389
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _ldap._tcp.gc._msdcs.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 3268
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _ldap._tcp.gc._msdcs.gaara.kazekage.net. 900 IN SRV 0 100 3268
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _ldap._tcp.pdc._msdcs.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 389
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _ldap._tcp.pdc._msdcs.gaara.kazekage.net. 900 IN SRV 0 100 389
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _ldap._tcp.default-first-site-name._
> sites.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 389
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _ldap._tcp.default-first-site-name._sites.gaara.kazekage.net. 900 IN SRV
> 0 100 389
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _ldap._tcp.default-first-site-name._sites.dc._
> msdcs.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 389
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _ldap._tcp.default-first-site-name._sites.dc._msdcs.gaara.kazekage.net.
> 900 IN SRV 0 100 389
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _ldap._tcp.default-first-site-name._sites.gc._
> msdcs.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 3268
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _ldap._tcp.default-first-site-name._sites.gc._msdcs.gaara.kazekage.net.
> 900 IN SRV 0 100 3268
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV
> _ldap._tcp.d4786a56-88a6-4e16-8654-f3d7347aa1d7.domains._
> msdcs.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 389
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _ldap._tcp.d4786a56-88a6-4e16-8654-f3d7347aa1d7.domains._
> msdcs.gaara.kazekage.net. 900 IN SRV 0 100 389
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _gc._tcp.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 3268
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _gc._tcp.gaara.kazekage.net. 900 IN SRV 0 100 3268
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Calling nsupdate for SRV _gc._tcp.default-first-site-name._
> sites.gaara.kazekage.net
> shuka-ku.gaara.kazekage.net 3268
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
> ;; flags: ; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
> ;; UPDATE SECTION:
> _gc._tcp.default-first-site-name._sites.gaara.kazekage.net. 900 IN SRV 0
> 100 3268
> shuka-ku.gaara.kazekage.net.
>
> ; TSIG error with server: tsig verify failure
> update failed: FORMERR
> Failed nsupdate: 2
> Failed update of 21 entries
>
>
>
>
>
> [root at shuka-ku ~]# ls -lai /usr/local/samba/private/sam.ldb.d/
> total 48184
> 22155416 drwx------ 2 root named 4096 Jan 24 14:18 .
> 21692431 drwxr-xr-x 6 root root 4096 Jan 28 14:07 ..
> 22155421 -rw------- 1 root named 16400384 Jan 24 14:18
> CN=CONFIGURATION,DC=GAARA,DC=KAZEKAGE,DC=NET.ldb
> 22155422 -rw------- 1 root named 10391552 Jan 24 14:18
> CN=SCHEMA,CN=CONFIGURATION,DC=GAARA,DC=KAZEKAGE,DC=NET.ldb
> 22155423 -rw------- 1 root named 4251648 Jan 28 10:39
> DC=DOMAINDNSZONES,DC=GAARA,DC=KAZEKAGE,DC=NET.ldb
> 22155424 -rw------- 1 root named 4251648 Jan 24 14:18
> DC=FORESTDNSZONES,DC=GAARA,DC=KAZEKAGE,DC=NET.ldb
> 22155420 -rw------- 1 root named 13529088 Jan 28 13:57
> DC=GAARA,DC=KAZEKAGE,DC=NET.ldb
> 22155419 -rw-r----- 1 root named 421888 Jan 28 11:09 metadata.tdb
>
>
>
>
Maybe Matching Threads
- Checking data migration from samba3 to samba4
- Changing administrator password after Samba4 classic upgrade
- Unable to access AD with ADExplorer
- strange: 20 characters max in samAccountName
- Mac/Win Login after sleep mode, Sync Problem for Access Control List between DCs, AccountLock