Roy Eastwood
2021-Sep-09 16:38 UTC
[Samba] samba AD-DC with bind9, dyn-dns complains that "No AD dhcp user exists"
On 09 September 2021 16:33 Rowland Penny wrote:> On Thu, 2021-09-09 at 16:20 +0100, Carlos Jesus via samba wrote: > > Ah wait, there's a missing double quote at the end (right?). > > Yes sorry, my fault :"-) > > > If I add the double quote, then I get > > search error - LDAP error 32 LDAP_NO_SUCH_OBJECT - <acl_read: Error > > retrieving instanceType for base. at > > ../../source4/dsdb/samdb/ldb_modules/acl_read.c:939> <> > > That confirms it, you have the old dns setup with no forest dns zone. > > What there is of a forest dns is in the wrong place. > > Not sure where you go from here, Samba needs the forest forward zone. > > RowlandI get the same error when I run your command, yet I DO have the _msdcs zone. Maybe there's still something amiss with your ldbsearch command? Roy
Rowland Penny
2021-Sep-09 16:52 UTC
[Samba] samba AD-DC with bind9, dyn-dns complains that "No AD dhcp user exists"
On Thu, 2021-09-09 at 17:38 +0100, Roy Eastwood via samba wrote:> > I get the same error when I run your command, yet I DO have the > _msdcs zone. Maybe there's still something amiss with your > ldbsearch command? > > Roy > >Okay, when I run the command, I get this: pi at rpidc1:~ $ sudo ldbsearch -H ldap://$(hostname -s) -P -b "DC=_msdcs.$(hostname -d),CN=MicrosoftDNS,DC=ForestDnsZones,$(echo "DC=$(hostname -d)" | sed 's/\./,DC=/g')" | grep 'dn:' dn: DC=b8fe12a4-be9a-416f-97cc- 7d4b2e330bdc,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=ForestDnsZ ones,DC=samdom,DC=example,DC=com dn: DC=_ldap._tcp.gc,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=Forest DnsZones,DC=samdom,DC=example,DC=com dn: DC=_ldap._tcp.39158e67-2a41-4070-99eb- 37d82ca76894.domains,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=Fo restDnsZones,DC=samdom,DC=example,DC=com dn: DC=28ec0749-5552-4bc1-b836- b1574dc4f0a4,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=ForestDnsZ ones,DC=samdom,DC=example,DC=com dn: DC=gc,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=ForestDnsZones,DC =samdom,DC=example,DC=com dn: DC=_kerberos._tcp.dc,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=Fo restDnsZones,DC=samdom,DC=example,DC=com dn: DC=_kerberos._tcp.Default-First-Site- Name._sites.dc,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=ForestDn sZones,DC=samdom,DC=example,DC=com dn: DC=_ldap._tcp.Default-First-Site- Name._sites.gc,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=ForestDn sZones,DC=samdom,DC=example,DC=com dn: DC=_ldap._tcp.Default-First-Site- Name._sites.dc,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=ForestDn sZones,DC=samdom,DC=example,DC=com dn: DC=_ldap._tcp.dc,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=Forest DnsZones,DC=samdom,DC=example,DC=com dn: DC=@,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=ForestDnsZones,DCsamdom,DC=example,DC=com dn: DC=d37349f1-3c5c-40d1-b1b5- 263ca59ae6f1,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=ForestDnsZ ones,DC=samdom,DC=example,DC=com dn: DC=60a45410-fc34-4df1-934b- 612c28c0d9e4,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=ForestDnsZ ones,DC=samdom,DC=example,DC=com dn: DC=_ldap._tcp.pdc,DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=Fores tDnsZones,DC=samdom,DC=example,DC=com dn: DC=_msdcs.samdom.example.com,CN=MicrosoftDNS,DC=ForestDnsZones,DC=samdo m,DC=example,DC=com Rowland