Rowland Penny
2018-Mar-02 14:32 UTC
[Samba] Error joining Samba 4.7.4 DC to existing Win2008R2 domain
On Fri, 2 Mar 2018 15:15:49 +0100 Claudio Nicora <claudio.nicora at gmail.com> wrote:> This could be the right way... > > There is a bit of a problem with that, it should be: > > > > DC=SRVAD-NEW,DC=samdom.local,CN=MicrosoftDNS,DC=DomainDnsZones,DC=SAMDOM,DC=LOCAL > The SAMDOM.LOCAL zone is set to replicate to the whole forest (maybe > I've missed that info on DNS config, anyway Domain-only replication > is ok for me too). > I've changed it to replicate to only Domain DNS and now the DNS > record is like you wrote. > I've deleted the manually created record, rerun "samba-tool join"... > same error. > > I've then manually recreated the SRVAD-NEW A record, rerun > "samba-tool join" and it now goes one step forward and stops at CNAME > record creation (partial log taken with -d9): > ==> Adding DNS A record SRVAD-NEW.SAMDOM.LOCAL for IPv4 IP: 10.0.3.100 > Adding DNS CNAME record > 73347556-45cf-4951-9814-81d6daa6a236._msdcs.SAMDOM.LOCAL for > SRVAD-NEW.SAMDOM.LOCALIs bind9 running during the join ? How have you set up bind ? Rowland
Claudio Nicora
2018-Mar-02 15:15 UTC
[Samba] Error joining Samba 4.7.4 DC to existing Win2008R2 domain
> Is bind9 running during the join ? > How have you set up bind ?No it's not. Following the doc here https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End I see than the needed files (like /var/lib/samba/private/named.conf and /var/lib/samba/private/dns.keytab) are generated by samba-tool so I don't have them ready to be added to bind9 config. Before running samba-tool this is content of relevant files: ==root at srvad-new:~# cat /etc/hosts 127.0.0.1 localhost 10.0.3.90 srvad-old.samdom.local srvad-old 10.0.3.100 srvad-new.samdom.local srvad-new root at srvad-new:~# cat /etc/resolv.conf nameserver 10.0.3.90 search samdom.local == Am I missing something?
Rowland Penny
2018-Mar-02 15:32 UTC
[Samba] Error joining Samba 4.7.4 DC to existing Win2008R2 domain
On Fri, 2 Mar 2018 16:15:43 +0100 Claudio Nicora <claudio.nicora at gmail.com> wrote:> > > Is bind9 running during the join ? > > How have you set up bind ? > No it's not. > Following the doc here > https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End > I see than the needed files (like /var/lib/samba/private/named.conf > and /var/lib/samba/private/dns.keytab) are generated by samba-tool so > I don't have them ready to be added to bind9 config. > > Before running samba-tool this is content of relevant files: > ==> root at srvad-new:~# cat /etc/hosts > 127.0.0.1 localhost > 10.0.3.90 srvad-old.samdom.local srvad-old > 10.0.3.100 srvad-new.samdom.local srvad-new > > root at srvad-new:~# cat /etc/resolv.conf > nameserver 10.0.3.90 > search samdom.local > ==> > Am I missing something?No, I was just checking if you where something you shouldn't, like creating the zone files in the Bind configs. There doesn't seem to be anything wrong in any of your conf files, the only other thing I can think of is, is Avahi running on the new DC ? and this only applies if your TLD is '.local' I know that 4.7.5 will join to a Samba AD DC, but this is with Debian. Rowland