Arjit Gupta
2017-Jun-14 09:43 UTC
[Samba] Joining a Windows Server 2008 / 2008 R2 DC to a Samba AD - ISSUE - The RPC server is unavailable
Thanks for the response. Is this xattr causing this RPC server is unavailable issue ? Arjit Kumar On Wed, Jun 14, 2017 at 12:57 PM, Rowland Penny via samba < samba at lists.samba.org> wrote:> On Wed, 14 Jun 2017 10:43:50 +0530 > Arjit Gupta <arjitk.gupta at gmail.com> wrote: > > > If you read the output from your provision command, there is this: > > > You are not root or your system do not support xattr, using tdb > > backend for attributes. > > not using extended attributes to store ACLs and other metadata. If you > > intend to use this provision in production, rerun the script as root > > on a system supporting xattrs. > > Followed by this: > > > xattr_tdb_removexattr() failed to get vfs_handle->data! > > Sorry, but in my opinion, you cannot reliably and safely run a Samba AD > DC on your OS unless you can fix the lack of xattr and ACLs on the > system. > > Rowland > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >
Rowland Penny
2017-Jun-14 10:01 UTC
[Samba] Joining a Windows Server 2008 / 2008 R2 DC to a Samba AD - ISSUE - The RPC server is unavailable
On Wed, 14 Jun 2017 15:13:13 +0530 Arjit Gupta <arjitk.gupta at gmail.com> wrote:> Thanks for the response. > > Is this xattr causing this RPC server is unavailable issue ? > > Arjit Kumar > >Lets be perfectly honest here, the lack of POSIX ACLs means that UX is never going to be suitable as a Samba AD DC. You are going to be connecting Windows machines to the DC and they definitely require POSIX ACLs. Can I suggest you forget UX if you want a DC and use Linux instead. Rowland
Andrew Bartlett
2017-Jun-15 02:37 UTC
[Samba] Joining a Windows Server 2008 / 2008 R2 DC to a Samba AD - ISSUE - The RPC server is unavailable
On Wed, 2017-06-14 at 11:01 +0100, Rowland Penny via samba wrote:> On Wed, 14 Jun 2017 15:13:13 +0530 > Arjit Gupta <arjitk.gupta at gmail.com> wrote: > > > Thanks for the response. > > > > Is this xattr causing this RPC server is unavailable issue ? > > > > Arjit Kumar > > > > > > Lets be perfectly honest here, the lack of POSIX ACLs means that UX > is > never going to be suitable as a Samba AD DC. You are going to be > connecting Windows machines to the DC and they definitely require > POSIX > ACLs. > > Can I suggest you forget UX if you want a DC and use Linux instead.BTW, I've looked back at the original logs. The issue is this: single_terminate: reason[socket_get_remote_addr() failed] The reason is that we require 'credentials passing' via the getpeereid() call or SO_PEERCRED, a feature not in posix but available one way or the other on multiple unix-like systems, which allows one end of the pipe to know the UID and GID of the other end. We don't have an implementation of this for HP-UX, so the AD DC won't run. I'm sorry the build doesn't fail earlier for you. Andrew Bartlett -- Andrew Bartlett https://samba.org/~abartlet/ Authentication Developer, Samba Team https://samba.org Samba Development and Support, Catalyst IT https://catalyst.net.nz/services/samba