Hi,
Anyone knows what is this?
[root at artemis bin]# ./samba-tool domain provision --use-rfc2307
--interactive
Realm [DOM.CITY10.COM.BR]:
Domain [DOM]:
Server Role (dc, member, standalone) [dc]:
DNS backend (SAMBA_INTERNAL, BIND9_FLATFILE, BIND9_DLZ, NONE)
[SAMBA_INTERNAL]:
DNS forwarder IP address (write 'none' to disable forwarding)
[187.85.85.1]:
Administrator password:
Retype password:
Looking up IPv4 addresses
Looking up IPv6 addresses
No IPv6 address will be assigned
Setting up share.ldb
Setting up secrets.ldb
Setting up the registry
Setting up the privileges database
Setting up idmap db
Setting up SAM db
Setting up sam.ldb partitions and settings
Setting up sam.ldb rootDSE
Pre-loading the Samba 4 and AD schema
Adding DomainDN: DC=dom,DC=city10,DC=com,DC=br
Adding configuration container
Setting up sam.ldb schema
Setting up sam.ldb configuration data
Setting up display specifiers
Modifying display specifiers
Adding users container
Modifying users container
Adding computers container
Modifying computers container
Setting up sam.ldb data
Setting up well known security principals
Setting up sam.ldb users and groups
ERROR(ldb): uncaught exception - operations error at
../source4/dsdb/samdb/ldb_modules/password_hash.c:2241
File "/opt/lib64/python2.7/site-packages/samba/netcmd/__init__.py",
line
175, in _run
return self.run(*args, **kwargs)
File "/opt/lib64/python2.7/site-packages/samba/netcmd/domain.py",
line
461, in run
nosync=ldap_backend_nosync, ldap_dryrun_mode=ldap_dryrun_mode)
File
"/opt/lib64/python2.7/site-packages/samba/provision/__init__.py",
line 2171, in provision
skip_sysvolacl=skip_sysvolacl)
File
"/opt/lib64/python2.7/site-packages/samba/provision/__init__.py",
line 1794, in provision_fill
next_rid=next_rid, dc_rid=dc_rid)
File
"/opt/lib64/python2.7/site-packages/samba/provision/__init__.py",
line 1452, in fill_samdb
"KRBTGTPASS_B64":
b64encode(krbtgtpass.encode('utf-16-le'))
File "/opt/lib64/python2.7/site-packages/samba/provision/common.py",
line
55, in setup_add_ldif
ldb.add_ldif(data, controls)
File "/opt/lib64/python2.7/site-packages/samba/__init__.py", line
225, in
add_ldif
self.add(msg, controls)
--
Vinicius da Silva Lehmann
*Analista de TI - City10*
*MCP - Microsoft Certified Professional*
I had the same problem this week. Resolved commenting on the line "includedir /etc/krb5.conf.d/" in /etc/krb5.conf On Thu, Dec 15, 2016 at 11:09 AM, Vinicius Lehmann via samba < samba at lists.samba.org> wrote:> Hi, > > Anyone knows what is this? > > [root at artemis bin]# ./samba-tool domain provision --use-rfc2307 > --interactive > Realm [DOM.CITY10.COM.BR]: > Domain [DOM]: > Server Role (dc, member, standalone) [dc]: > DNS backend (SAMBA_INTERNAL, BIND9_FLATFILE, BIND9_DLZ, NONE) > [SAMBA_INTERNAL]: > DNS forwarder IP address (write 'none' to disable forwarding) > [187.85.85.1]: > Administrator password: > Retype password: > Looking up IPv4 addresses > Looking up IPv6 addresses > No IPv6 address will be assigned > Setting up share.ldb > Setting up secrets.ldb > Setting up the registry > Setting up the privileges database > Setting up idmap db > Setting up SAM db > Setting up sam.ldb partitions and settings > Setting up sam.ldb rootDSE > Pre-loading the Samba 4 and AD schema > Adding DomainDN: DC=dom,DC=city10,DC=com,DC=br > Adding configuration container > Setting up sam.ldb schema > Setting up sam.ldb configuration data > Setting up display specifiers > Modifying display specifiers > Adding users container > Modifying users container > Adding computers container > Modifying computers container > Setting up sam.ldb data > Setting up well known security principals > Setting up sam.ldb users and groups > ERROR(ldb): uncaught exception - operations error at > ../source4/dsdb/samdb/ldb_modules/password_hash.c:2241 > File "/opt/lib64/python2.7/site-packages/samba/netcmd/__init__.py", line > 175, in _run > return self.run(*args, **kwargs) > File "/opt/lib64/python2.7/site-packages/samba/netcmd/domain.py", line > 461, in run > nosync=ldap_backend_nosync, ldap_dryrun_mode=ldap_dryrun_mode) > File "/opt/lib64/python2.7/site-packages/samba/provision/__init__.py", > line 2171, in provision > skip_sysvolacl=skip_sysvolacl) > File "/opt/lib64/python2.7/site-packages/samba/provision/__init__.py", > line 1794, in provision_fill > next_rid=next_rid, dc_rid=dc_rid) > File "/opt/lib64/python2.7/site-packages/samba/provision/__init__.py", > line 1452, in fill_samdb > "KRBTGTPASS_B64": b64encode(krbtgtpass.encode('utf-16-le')) > File "/opt/lib64/python2.7/site-packages/samba/provision/common.py", > line > 55, in setup_add_ldif > ldb.add_ldif(data, controls) > File "/opt/lib64/python2.7/site-packages/samba/__init__.py", line 225, > in > add_ldif > self.add(msg, controls) > > > -- > Vinicius da Silva Lehmann > *Analista de TI - City10* > *MCP - Microsoft Certified Professional* > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba
On Thu, 15 Dec 2016 11:09:20 -0200 Vinicius Lehmann via samba <samba at lists.samba.org> wrote:> Hi, > > Anyone knows what is this? > > [root at artemis bin]# ./samba-tool domain provision --use-rfc2307 > --interactive > Realm [DOM.CITY10.COM.BR]: > Domain [DOM]: > Server Role (dc, member, standalone) [dc]: > DNS backend (SAMBA_INTERNAL, BIND9_FLATFILE, BIND9_DLZ, NONE) > [SAMBA_INTERNAL]: > DNS forwarder IP address (write 'none' to disable forwarding) > [187.85.85.1]: > Administrator password: > Retype password: > Looking up IPv4 addresses > Looking up IPv6 addresses > No IPv6 address will be assigned > Setting up share.ldb > Setting up secrets.ldb > Setting up the registry > Setting up the privileges database > Setting up idmap db > Setting up SAM db > Setting up sam.ldb partitions and settings > Setting up sam.ldb rootDSE > Pre-loading the Samba 4 and AD schema > Adding DomainDN: DC=dom,DC=city10,DC=com,DC=br > Adding configuration container > Setting up sam.ldb schema > Setting up sam.ldb configuration data > Setting up display specifiers > Modifying display specifiers > Adding users container > Modifying users container > Adding computers container > Modifying computers container > Setting up sam.ldb data > Setting up well known security principals > Setting up sam.ldb users and groups > ERROR(ldb): uncaught exception - operations error at > ../source4/dsdb/samdb/ldb_modules/password_hash.c:2241 > File "/opt/lib64/python2.7/site-packages/samba/netcmd/__init__.py", > line 175, in _run > return self.run(*args, **kwargs) > File "/opt/lib64/python2.7/site-packages/samba/netcmd/domain.py", > line 461, in run > nosync=ldap_backend_nosync, ldap_dryrun_mode=ldap_dryrun_mode) > File > "/opt/lib64/python2.7/site-packages/samba/provision/__init__.py", > line 2171, in provision skip_sysvolacl=skip_sysvolacl) > File > "/opt/lib64/python2.7/site-packages/samba/provision/__init__.py", > line 1794, in provision_fill next_rid=next_rid, dc_rid=dc_rid) > File > "/opt/lib64/python2.7/site-packages/samba/provision/__init__.py", > line 1452, in fill_samdb "KRBTGTPASS_B64": > b64encode(krbtgtpass.encode('utf-16-le')) File > "/opt/lib64/python2.7/site-packages/samba/provision/common.py", line > 55, in setup_add_ldif ldb.add_ldif(data, controls) > File "/opt/lib64/python2.7/site-packages/samba/__init__.py", line > 225, in add_ldif > self.add(msg, controls) > >It looks like the Administrator password you supplied isn't complex enough, see here: https://technet.microsoft.com/en-us/library/cc786468%28v=ws.10%29.aspx Rowland
On Thu, 15 Dec 2016 11:21:56 -0200 Fernando Favero via samba <samba at lists.samba.org> wrote:> I had the same problem this week. > Resolved commenting on the line "includedir /etc/krb5.conf.d/" in > /etc/krb5.conf >Don't understand how this helped, you shouldn't have an /etc/krb5.conf file until after the provision. Rowland
Not totaly correct Rowland. After install krb5-user, you get a default krb5.conf and if you server is correctly setup, ( at least for debian related systems ) The default file works as good as the samba generated version. Im testing with as much defaults as possible, but more imported here is, which OS is used, so that the can be added to the wiki, if the solution is this simple. Greetz, Louis> -----Oorspronkelijk bericht-----> Van: samba [mailto:samba-bounces at lists.samba.org] Namens Rowland Penny via> samba> Verzonden: donderdag 15 december 2016 14:32> Aan: samba at lists.samba.org> Onderwerp: Re: [Samba] Error on samba-tool domain provision>> On Thu, 15 Dec 2016 11:21:56 -0200> Fernando Favero via samba <samba at lists.samba.org> wrote:>> > I had the same problem this week.> > Resolved commenting on the line "includedir /etc/krb5.conf.d/" in> > /etc/krb5.conf> >>> Don't understand how this helped, you shouldn't have an /etc/krb5.conf> file until after the provision.>> Rowland>> --> To unsubscribe from this list go to the following URL and read the> instructions: https://lists.samba.org/mailman/options/samba