On 07/30/2019 10:05 AM, Rowland penny via samba wrote:> > Try running these commands: > > ldbsearch --cross-ncs --show-binary -H /var/lib/samba/private/sam.ldb > -b 'CN=MicrosoftDNS,DC=DomainDnsZones,DC=edm-inc,DC=com' -s sub > '(objectclass=dnsNode)' > domain_records.ldif > > ldbsearch --cross-ncs --show-binary -H /var/lib/samba/private/sam.ldb > -b 'CN=MicrosoftDNS,DC=ForestDnsZones,DC=edm-inc,DC=com' -s sub > '(objectclass=dnsNode)' > forest_records.ldifThis one just has an error: search error - No such Base DN: CN=MicrosoftDNS,DC=ForestDnsZones,DC=edm-inc,DC=com -- Bob Wooldridge EDM Incorporated
On 30/07/2019 18:19, Robert A Wooldridge via samba wrote:> On 07/30/2019 10:05 AM, Rowland penny via samba wrote: >> >> Try running these commands: >> >> ldbsearch --cross-ncs --show-binary -H /var/lib/samba/private/sam.ldb >> -b 'CN=MicrosoftDNS,DC=DomainDnsZones,DC=edm-inc,DC=com' -s sub >> '(objectclass=dnsNode)' > domain_records.ldif >> >> ldbsearch --cross-ncs --show-binary -H /var/lib/samba/private/sam.ldb >> -b 'CN=MicrosoftDNS,DC=ForestDnsZones,DC=edm-inc,DC=com' -s sub >> '(objectclass=dnsNode)' > forest_records.ldif > This one just has an error: > search error - No such Base DN: > CN=MicrosoftDNS,DC=ForestDnsZones,DC=edm-inc,DC=com > >You have multiple DNs missing, still looking into this, I will reply directly to you shortly. Rowland
Hai, Just an suggestion. Since now its known what is missing/wrong. Remove this server from the domain and re-add it. But use the samba 4.9.11 or 4.10.6 now. We verified almost all other settings on the server thats ok, so.. Dont remove/delete the complete server. Only the samba data. ! And make a backup of these. Stop samba Cleanup /var/lib/samba/ ( remove the content from the folders, keep the folders ) And same with /var/cache/samba/ Before you start/attempt to re-join. Check the AD of any left overs, so check the AD-DNS and AD-DB with RSAT tools. Only then when your 100% sure then rejoin. At least, this is what i would do. Trying to fix it will take much more time. @Rowland, great find with the searches.. :-) Greetz, Louis> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Rowland penny via samba > Verzonden: dinsdag 30 juli 2019 19:43 > Aan: samba at lists.samba.org > Onderwerp: Re: [Samba] Serverinfo Error > > On 30/07/2019 18:19, Robert A Wooldridge via samba wrote: > > On 07/30/2019 10:05 AM, Rowland penny via samba wrote: > >> > >> Try running these commands: > >> > >> ldbsearch --cross-ncs --show-binary -H > /var/lib/samba/private/sam.ldb > >> -b 'CN=MicrosoftDNS,DC=DomainDnsZones,DC=edm-inc,DC=com' -s sub > >> '(objectclass=dnsNode)' > domain_records.ldif > >> > >> ldbsearch --cross-ncs --show-binary -H > /var/lib/samba/private/sam.ldb > >> -b 'CN=MicrosoftDNS,DC=ForestDnsZones,DC=edm-inc,DC=com' -s sub > >> '(objectclass=dnsNode)' > forest_records.ldif > > This one just has an error: > > search error - No such Base DN: > > CN=MicrosoftDNS,DC=ForestDnsZones,DC=edm-inc,DC=com > > > > > You have multiple DNs missing, still looking into this, I will reply > directly to you shortly. > > Rowland > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > >
On 07/31/2019 01:28 AM, L.P.H. van Belle via samba wrote:> Hai, > > Just an suggestion. Since now its known what is missing/wrong. > Remove this server from the domain and re-add it.Since I transferred all 7 roles to this server, is it safe to remove it?? Or is there a safe method for me to follow in order to do this?? And when I re-install it, do I have to seize the roles?> > But use the samba 4.9.11 or 4.10.6 now. > > We verified almost all other settings on the server thats ok, so.. > Dont remove/delete the complete server. Only the samba data. > > ! And make a backup of these. > Stop samba > Cleanup /var/lib/samba/ ( remove the content from the folders, keep the folders ) > And same with /var/cache/samba/Should I delete /etc/samba/smb.conf too?> > Before you start/attempt to re-join. > Check the AD of any left overs, so check the AD-DNS and AD-DB with RSAT tools.Is there something specific you are thinking of here?> > Only then when your 100% sure then rejoin. > > At least, this is what i would do. > Trying to fix it will take much more time.Yes, this sounds reasonable to me too. -- Bob Wooldridge EDM Incorporated
On 07/31/2019 01:28 AM, L.P.H. van Belle via samba wrote:> Hai, > > Just an suggestion. Since now its known what is missing/wrong. > Remove this server from the domain and re-add it. > > But use the samba 4.9.11 or 4.10.6 now.Would it be safer if I added a different machine using 4.9.11?? And if this new one works, then transfer rolls to it? -- Bob Wooldridge EDM Incorporated
After a quick look at this thread, yes, i suggest you add a new DC. I also suggest you read : First this one. https://github.com/thctlo/samba4/blob/master/howtos/stretch-base-1.1-checkup.txt Now you are joining a existing domain. Line 20, the resolv.conf, set the first name server to you windows DC, the second to the internet. Besides that, before you install samba do these checks. Next is the install for the AD-DC. https://github.com/thctlo/samba4/blob/master/howtos/stretch-base-2.0-samba-minimal-ad.txt It is getting a bit old but its still correct. You start with line 38/39. Follow it until you are at line 183. Now here it changes a bit since your joining a domain. First you choose, with or without bind9_dlz. Personally, i preffer bind9_dlz because its more flexable. Then kinit administrator samba-tool domain join your.dns.domain.tld DC -k yes Then follow it untill line 258, bind/ no bind.. Follow then untill line 290. There you can stop, skip the SePrivileges part. Reboot the server, and check your result. Greetz, Louis> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Robert A Wooldridge via samba > Verzonden: donderdag 1 augustus 2019 16:16 > Aan: samba at lists.samba.org > Onderwerp: Re: [Samba] Serverinfo Error > > On 07/31/2019 01:28 AM, L.P.H. van Belle via samba wrote: > > Hai, > > > > Just an suggestion. Since now its known what is missing/wrong. > > Remove this server from the domain and re-add it. > > > > But use the samba 4.9.11 or 4.10.6 now. > Would it be safer if I added a different machine using > 4.9.11?? And if > this new one works, then transfer rolls to it? > > -- > Bob Wooldridge > EDM Incorporated > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > >