Hello, I?m unable to get Samba4 to join an existing AD domain as a DC. Running a Win2k12 R2 Server as primary. This is a test server, before rolling it out live to a remote location. it at testdom:~$ sudo samba-tool domain join example.com DC -Uadministrator ?realm=example.com --server "ad.example.com" --dns=SAMBA_INTERNAL -WEXAMPLE [sudo] password for it: Password for [EXAMPLE\administrator]: workgroup is EXAMPLE realm is EXAMPLE.com checking sAMAccountName Adding CN=TESTDOM,OU=Domain Controllers,DC=example,DC=com Adding CN=TESTDOM,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=example,DC=com Join failed - cleaning up checking sAMAccountName Deleted CN=TESTDOM,OU=Domain Controllers,DC=example,DC=com ERROR(ldb): uncaught exception - LDAP error 32 LDAP_NO_SUCH_OBJECT - CN=Sites,CN=Configuration,DC=example,DC=com <0000208D: NameErr: DSID-03100238, problem 2001 (NO_OBJECT), data 0, best match of: 'CN=Sites,CN=Configuration,DC=example,DC=com'> <>File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line 175, in _run return self.run(*args, **kwargs) File "/usr/lib/python2.7/dist-packages/samba/netcmd/domain.py", line 552, in run machinepass=machinepass, use_ntvfs=use_ntvfs, dns_backend=dns_backend) File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1172, in join_DC ctx.do_join() File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1075, in do_join ctx.join_add_objects() File "/usr/lib/python2.7/dist-packages/samba/join.py", line 534, in join_add_objects ctx.samdb.add(rec) Any ideas? Cam Clayton
On 19/02/15 16:01, Cam Clayton wrote:> Hello, > > I?m unable to get Samba4 to join an existing AD domain as a DC. Running a Win2k12 R2 Server as primary. > > This is a test server, before rolling it out live to a remote location. > > it at testdom:~$ sudo samba-tool domain join example.com DC -Uadministrator ?realm=example.com --server "ad.example.com" --dns=SAMBA_INTERNAL -WEXAMPLE > [sudo] password for it: > Password for [EXAMPLE\administrator]: > workgroup is EXAMPLE > realm is EXAMPLE.com > checking sAMAccountName > Adding CN=TESTDOM,OU=Domain Controllers,DC=example,DC=com > Adding CN=TESTDOM,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=example,DC=com > Join failed - cleaning up > checking sAMAccountName > Deleted CN=TESTDOM,OU=Domain Controllers,DC=example,DC=com > ERROR(ldb): uncaught exception - LDAP error 32 LDAP_NO_SUCH_OBJECT - CN=Sites,CN=Configuration,DC=example,DC=com <0000208D: NameErr: DSID-03100238, problem 2001 (NO_OBJECT), data 0, best match of: > 'CN=Sites,CN=Configuration,DC=example,DC=com' >> <> > File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line 175, in _run > return self.run(*args, **kwargs) > File "/usr/lib/python2.7/dist-packages/samba/netcmd/domain.py", line 552, in run > machinepass=machinepass, use_ntvfs=use_ntvfs, dns_backend=dns_backend) > File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1172, in join_DC > ctx.do_join() > File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1075, in do_join > ctx.join_add_objects() > File "/usr/lib/python2.7/dist-packages/samba/join.py", line 534, in join_add_objects > ctx.samdb.add(rec) > > Any ideas? > > Cam ClaytonFirst thing that jumps out (provided it isn't a cut & paste error) --server "ad.example.com" Should be: --server="ad.example.com" Also I am not sure whether samba4 will join a Win2k12 R2 domain. Rowland
Hello Cam, Am 19.02.2015 um 17:01 schrieb Cam Clayton:> I?m unable to get Samba4 to join an existing AD domain > as a DC. Running a Win2k12 R2 Server as primary.We don't support the 2012 and later AD schema at the moment. https://wiki.samba.org/index.php/FAQ#Does_Samba_AD_allow_Windows_Server_2012_.2F_2012_R2_to_be_joined_as_DC.3F I added a note to the prerequisites section of the 'Join as DC' documentation: https://wiki.samba.org/index.php/Join_a_domain_as_a_DC#Prerequisites Regards, Marc
Thank you for the Reply and the updated info Marc, Cam> On Feb 19, 2015, at 12:45 PM, Marc Muehlfeld <mmuehlfeld at samba.org> wrote: > > Hello Cam, > > Am 19.02.2015 um 17:01 schrieb Cam Clayton: >> I?m unable to get Samba4 to join an existing AD domain >> as a DC. Running a Win2k12 R2 Server as primary. > > We don't support the 2012 and later AD schema at the moment. > > https://wiki.samba.org/index.php/FAQ#Does_Samba_AD_allow_Windows_Server_2012_.2F_2012_R2_to_be_joined_as_DC.3F > > > > I added a note to the prerequisites section of the 'Join as DC' > documentation: > https://wiki.samba.org/index.php/Join_a_domain_as_a_DC#Prerequisites > > > Regards, > Marc