samba - Sep 2022 - Problems with Samba after upgrading to v4 and changing LDAP-backend from OpenLDAP to 389

I was able to make some progress on the issue and I have the following things
working now:

- "pdbedit -v -u username" works fine now
- ?pdbedit -L? works as well
- ?getent passwd username? works
- "wbinfo -g" works
- joining and leaving the domain works fine as well

I?m still stuck on

- "wbinfo -u" does not return any users (is this important?)
- login from Windows machines fails with error 7519 which indicates a problem
with RPC
- ?net rpc join -U administrator? fails with ?Failed to join domain: failed to
lookup DC info for domain 'DLAN' over rpc: {Device Timeout} The
specified I/O operation on %hs was not completed before the time-out period
expired.?
- port 135 also does not seem to be open on the machine
- "testparm --suppress-prompt -v | grep '[s]erver services?? seems to
return the correct list though ?server services = s3fs, rpc, nbt, wrepl, ldap,
cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns"

Anymore ideas?

Thanks.
> On Friday, Sep 23, 2022 at 2:02 PM, Alexander Harm || ApfelQ
<alexander.harm at apfelq.com (mailto:alexander.harm at apfelq.com)>
wrote:
> Doesn?t either. I will setup a clean test installation and see if it will
work there. Thanks.
>
> > On Friday, Sep 23, 2022 at 1:07 PM, Rowland Penny via samba <samba
at lists.samba.org (mailto:samba at lists.samba.org)> wrote:
> >
> >
> > On 23/09/2022 11:53, Alexander Harm || ApfelQ wrote:
> > > Same error unfortunately.
> > >
> > >
> >
> > Then my last thought is to change 'ldap' in /etc/nsswitch.conf
to
> > 'winbind' and see if that works.
> >
> > Rowland
> >
> >
> > --
> > To unsubscribe from this list go to the following URL and read the
> > instructions: https://lists.samba.org/mailman/options/samba

On 27/09/2022 13:52, Alexander Harm || ApfelQ wrote:
> I was able to make some progress on the issue and I have the following 
> things working now:
> 
> - "pdbedit -v -u username" works fine now
> - ?pdbedit -L? works as well
> - ?getent passwd username? works
> - "wbinfo -g" works
> - joining and leaving the domain works fine as well
> 
> I?m still stuck on
> 
> - "wbinfo -u" does not return any users (is this important?)
Yes
> - login from Windows machines fails with error 7519 which indicates a 
> problem with RPC
> - ?net rpc join -U administrator? fails with ?Failed to join domain: 
> failed to lookup DC info for domain 'DLAN' over rpc: {Device
Timeout}
> The specified I/O operation on %hs was not completed before the time-out 
> period expired.?
> - port 135 also does not seem to be open on the machine
It looks like the rpc service isn't running.
> - "testparm --suppress-prompt -v | grep '[s]erver services?? seems
to
> return the correct list though ?server services = s3fs, rpc, nbt, wrepl, 
> ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns"
Have you upgraded to AD, if not then you can ignore that, it is only 
used by AD.
> 
> Anymore ideas?
No, a bit lost now, it has been years since I ran an NT4-style domain.

Rowland