James B. Byrne
2014-Feb-04 14:41 UTC
[Samba] Problems adding a Samba4 AD to existing Win2000 AD
i86_64
CentOS-6.5
Samba-4.1.4-7 (sernet)
MS-Win2000 Advanced Server AD DC
I am following the HowTo provided at
https://wiki.samba.org/index.php/Samba4/HOWTO/Join_a_domain_as_a_DC. I am at
this point:
--->
In this case, 737506d0-bfe6-40c8-815d-08c3dff7a67f is the objectGUID of
the new DC, we'll query with the following command:
# host -t CNAME 737506d0-bfe6-40c8-815d-08c3dff7a67f._msdcs.samdom.example.com.
This should output you the alias (CNAME) of this entry pointing to your
new DC name.
If this record is also missing, you have to add it, too:
# samba-tool dns add IP-of-your-DNS _msdcs.samdom.example.com
737506d0-bfe6-40c8-815d-08c3dff7a67f CNAME DC2.samdom.example.com
-Uadministrator
<---
When I attempt to add the GUID of the new Samba AD DC to the DNS server
running on the existing Win2000 AD DC I get this:
# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: administrator at BROCKLEY.HARTE-LYNE.CA
Valid starting Expires Service principal
02/03/14 11:40:04 02/03/14 21:43:05
krbtgt/BROCKLEY.HARTE-LYNE.CA at BROCKLEY.HARTE-LYNE.CA
renew until 02/10/14 11:40:04
#find / -name sam.ldb
/var/lib/samba/private/sam.ldb
# ldbsearch -H /var/lib/samba/private/sam.ldb '(invocationid=*)'
--cross-ncs
objectguid
# record 1
dn: CN=NTDS
Settings,CN=BRDC-01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=brockley,DC=harte-lyne,DC=ca
objectGUID: db6fdf6c-2d53-4946-b6cd-1ad88227716d
# record 2
dn: CN=NTDS
Settings,CN=BRDC-02,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=brockley,DC=harte-lyne,DC=ca
objectGUID: 4c012287-f5d1-4f54-b186-3c6d5bfc2c68
# samba-tool dns add 192.168.216.66 _msdcs.brockley.harte-lyne.ca
4c012287-f5d1-4f54-b186-3c6d5bfc2c68 CNAME brdc-02.brockley.harte-lyne.ca
-Uadministrator
Password for [BROCKLEY\administrator]:
ERROR(runtime): uncaught exception - (-1073610706,
'NT_STATUS_RPC_PROCNUM_OUT_OF_RANGE')
File "/usr/lib64/python2.6/site-packages/samba/netcmd/__init__.py",
line
175, in _run
return self.run(*args, **kwargs)
File "/usr/lib64/python2.6/site-packages/samba/netcmd/dns.py", line
1067, in
run
0, server, zone, name, add_rec_buf, None)
The contents of /etc/samba/smb.conf (auto-created) are:
# cat /etc/samba/smb.conf
# Global parameters
[global]
workgroup = BROCKLEY
realm = brockley.harte-lyne.ca
netbios name = BRDC-02
server role = active directory domain controller
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbind,
ntp_signd, kcc, dnsupdate
[netlogon]
path = /var/lib/samba/sysvol/brockley.harte-lyne.ca/scripts
read only = No
[sysvol]
path = /var/lib/samba/sysvol
read only = No
dig reports this for BRDC-01
# dig @brdc-01 brdc-01.brockley.harte-lyne.ca
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.23.rc1.el6_5.1 <<>>
@brdc-01
brdc-01.brockley.harte-lyne.ca
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39355
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;brdc-01.brockley.harte-lyne.ca. IN A
;; ANSWER SECTION:
brdc-01.brockley.harte-lyne.ca. 3600 IN A 192.168.216.66
;; Query time: 0 msec
;; SERVER: 192.168.216.66#53(192.168.216.66)
;; WHEN: Tue Feb 4 09:16:43 2014
;; MSG SIZE rcvd: 64
I have searched for NT_STATUS_RPC_PROCNUM_OUT_OF_RANGE and other than my own
earlier report I have only found a reference to a printer problem. Does
anyone have any idea what the problem is that I have encountered or have any
ideas on how to solve it?
--
*** E-Mail is NOT a SECURE channel ***
James B. Byrne mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited http://www.harte-lyne.ca
9 Brockley Drive vox: +1 905 561 1241
Hamilton, Ontario fax: +1 905 561 0757
Canada L8E 3C3
Apparently Analagous Threads
Wisdom of the Ancients
