thr3ads.net - samba - [Samba] Problem with secondary DC [Aug 2020]

If this information is useful, please help other people find it:
Share via:

James B. Byrne

2020-Aug-21 14:52 UTC

[Samba] Problem with secondary DC

On Thu, August 20, 2020 16:14, Rowland penny wrote:> On 20/08/2020 20:40, James B. Byrne via samba wrote:
>> FreeBSd-12.1p8
>> Samba-4.10.15
>>
>>
>> I have this problem:
>>
>> samba-tool dbcheck --cross-ncs
>> Searching for dsServiceName in rootDSE failed: operations error at
>> ../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
>> Failed to find our own NTDS Settings DN in the ldb!
>> Searching for dsServiceName in rootDSE failed: operations error at
>> ../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
>> Failed to find our own NTDS Settings DN in the ldb!
>>
>> How do I fix this?
>>
>>
>>
> Is this just on one DC ?
>
> If you run the same command on another DC does it complete without error ?
>

I have two (2) DCs, SMB4-1 and SMB4-2, and two (2) user workstations connected
to the domain.  SMB4-2 has all the FSMO roles.

[root at smb4-2 ~ (master)]# samba-tool dbcheck --cross-ncs
Checking 3542 objects
Checked 3542 objects (0 errors)


[root at smb4-1 ~ (master)]# samba-tool dbcheck --cross-ncs
Searching for dsServiceName in rootDSE failed: operations error at
../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
Failed to find our own NTDS Settings DN in the ldb!
Searching for dsServiceName in rootDSE failed: operations error at
../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
Failed to find our own NTDS Settings DN in the ldb!
ERROR(ldb): uncaught exception - operations error at
../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
  File
"/usr/local/lib/python3.7/site-packages/samba/netcmd/__init__.py",
line
185, in _run
    return self.run(*args, **kwargs)
  File
"/usr/local/lib/python3.7/site-packages/samba/netcmd/dbcheck.py", line
141, in run
    check_expired_tombstones=selftest_check_expired_tombstones)
  File "/usr/local/lib/python3.7/site-packages/samba/dbchecker.py",
line 119,
in __init__
    self.ntds_dsa = ldb.Dn(samdb, samdb.get_dsServiceName())
  File "/usr/local/lib/python3.7/site-packages/samba/samdb.py", line
1055, in
get_dsServiceName
    res = self.search(base="", scope=ldb.SCOPE_BASE,
attrs=["dsServiceName"])




-- 
***          e-Mail is NOT a SECURE channel          ***
        Do NOT transmit sensitive data via e-Mail
   Unencrypted messages have no legal claim to privacy
 Do NOT open attachments nor follow links sent by e-Mail

James B. Byrne                mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited          http://www.harte-lyne.ca
9 Brockley Drive              vox: +1 905 561 1241
Hamilton, Ontario             fax: +1 905 561 0757
Canada  L8E 3C3

Rowland penny

2020-Aug-21 15:10 UTC

head link

[Samba] Problem with secondary DC

On 21/08/2020 15:52, James B. Byrne wrote:>
> On Thu, August 20, 2020 16:14, Rowland penny wrote:
>> On 20/08/2020 20:40, James B. Byrne via samba wrote:
>>> FreeBSd-12.1p8
>>> Samba-4.10.15
>>>
>>>
>>> I have this problem:
>>>
>>> samba-tool dbcheck --cross-ncs
>>> Searching for dsServiceName in rootDSE failed: operations error at
>>> ../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
>>> Failed to find our own NTDS Settings DN in the ldb!
>>> Searching for dsServiceName in rootDSE failed: operations error at
>>> ../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
>>> Failed to find our own NTDS Settings DN in the ldb!
>>>
>>> How do I fix this?
>>>
>>>
>>>
>> Is this just on one DC ?
>>
>> If you run the same command on another DC does it complete without
error ?
>>
>
> I have two (2) DCs, SMB4-1 and SMB4-2, and two (2) user workstations
connected
> to the domain.  SMB4-2 has all the FSMO roles.
>
> [root at smb4-2 ~ (master)]# samba-tool dbcheck --cross-ncs
> Checking 3542 objects
> Checked 3542 objects (0 errors)
>
>
> [root at smb4-1 ~ (master)]# samba-tool dbcheck --cross-ncs
> Searching for dsServiceName in rootDSE failed: operations error at
> ../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
> Failed to find our own NTDS Settings DN in the ldb!
> Searching for dsServiceName in rootDSE failed: operations error at
> ../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
> Failed to find our own NTDS Settings DN in the ldb!
> ERROR(ldb): uncaught exception - operations error at
> ../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
>    File
"/usr/local/lib/python3.7/site-packages/samba/netcmd/__init__.py",
line
> 185, in _run
>      return self.run(*args, **kwargs)
>    File
"/usr/local/lib/python3.7/site-packages/samba/netcmd/dbcheck.py", line
> 141, in run
>      check_expired_tombstones=selftest_check_expired_tombstones)
>    File
"/usr/local/lib/python3.7/site-packages/samba/dbchecker.py", line 119,
> in __init__
>      self.ntds_dsa = ldb.Dn(samdb, samdb.get_dsServiceName())
>    File "/usr/local/lib/python3.7/site-packages/samba/samdb.py",
line 1055, in
> get_dsServiceName
>      res = self.search(base="", scope=ldb.SCOPE_BASE,
attrs=["dsServiceName"])
It looks like 'smb4-2' is okay, if it is, I would demote
'smb4-1' and
start again.

Rowland

James B. Byrne

2020-Aug-21 16:07 UTC

head link

[Samba] Problem with secondary DC

On Thu, August 20, 2020 15:10 +0000, Rowland penny wrote:

> It looks like 'smb4-2' is okay, if it is, I would demote
'smb4-1'
> and start again.
It does not seem to want to leave.

[root at smb4-1 ~ (master)]# samba-tool domain demote
Searching for dsServiceName in rootDSE failed: operations error at
../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
Failed to find our own NTDS Settings DN in the ldb!
Searching for dsServiceName in rootDSE failed: operations error at
../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
Failed to find our own NTDS Settings DN in the ldb!
Searching for dsServiceName in rootDSE failed: operations error at
../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
Failed to find our own NTDS Settings DN in the ldb!
ERROR: Failed to find options on 24434d0a-045a-4c49-b96a-1e7716431382

-- 
***          e-Mail is NOT a SECURE channel          ***
        Do NOT transmit sensitive data via e-Mail
   Unencrypted messages have no legal claim to privacy
 Do NOT open attachments nor follow links sent by e-Mail

James B. Byrne                mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited          http://www.harte-lyne.ca
9 Brockley Drive              vox: +1 905 561 1241
Hamilton, Ontario             fax: +1 905 561 0757
Canada  L8E 3C3

Rowland penny

2020-Aug-21 16:14 UTC

head link

[Samba] Problem with secondary DC

On 21/08/2020 17:07, James B. Byrne wrote:> On Thu, August 20, 2020 15:10 +0000, Rowland penny wrote:
>
>
>> It looks like 'smb4-2' is okay, if it is, I would demote
'smb4-1'
>> and start again.
> It does not seem to want to leave.
>
> [root at smb4-1 ~ (master)]# samba-tool domain demote
> Searching for dsServiceName in rootDSE failed: operations error at
> ../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
> Failed to find our own NTDS Settings DN in the ldb!
> Searching for dsServiceName in rootDSE failed: operations error at
> ../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
> Failed to find our own NTDS Settings DN in the ldb!
> Searching for dsServiceName in rootDSE failed: operations error at
> ../../source4/dsdb/samdb/ldb_modules/rootdse.c:518
> Failed to find our own NTDS Settings DN in the ldb!
> ERROR: Failed to find options on 24434d0a-045a-4c49-b96a-1e7716431382
>Turn it off, never to come back (call the next DC a new name), then 
forcibly demote it on the remaining DC with:

samba-tool domain demote --remove-other-dead-server=smb4-1

Rowland

Seemingly Similar Threads

Search for more maybe matching threads

samba - Aug 2020 - Problem with secondary DC

[Samba] Problem with secondary DC

[Samba] Problem with secondary DC

[Samba] Problem with secondary DC

[Samba] Problem with secondary DC

Seemingly Similar Threads