Rowland penny
2020-Dec-11 22:05 UTC
[Samba] placing sam.ldb (was dns.keytab doesn't exist)
On 11/12/2020 21:55, Dan Egli wrote:> Would it be better to just re-provision the domain? There's no body in > it right now but a single test user and a single machine account. It > would not be hard to simply re-run samba-tool domain provision. > > You tell me. I can nuke and start over, or try to fix this install, > whichever is easier. > > On 12/11/2020 2:44 PM, Rowland penny via samba wrote: >> On 11/12/2020 21:20, Dan Egli wrote: >>> >>> Problem is: that sam.ldb is the one that's broken (empty) I think. >>> There's ANOTHER sam.ldb in /var/lib/samba/private that's a bit bigger: >>> -rw-rw---- 1 root named 4694016 Dec 10 18:05 >>> /var/lib/samba/private/sam.ldb >>> >>> So if samba is looking for a sam.ldb in /var/lib/samba/bind-dns >>> should I copy the one from private over? >> >> No, it looks like something went wrong with the upgrade to Bind9, try >> reading these: >> >> https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End >> >> https://wiki.samba.org/index.php/Setting_up_a_BIND_DNS_Server >> >> https://wiki.samba.org/index.php/Changing_the_DNS_Back_End_of_a_Samba_AD_DC >> >> >> I am not entirely sure just how you have got to where you are now, >> but if everything is done correctly (the right commands at the right >> time) everything should be created/moved for you with minimal manual >> intervention. >> >> Rowland >> >> >>If this is a new domain, I personally would start again. Rowland
Check. Will do. Let you all know how it works out. On 12/11/2020 3:05 PM, Rowland penny via samba wrote:> On 11/12/2020 21:55, Dan Egli wrote: >> Would it be better to just re-provision the domain? There's no body >> in it right now but a single test user and a single machine account. >> It would not be hard to simply re-run samba-tool domain provision. >> >> You tell me. I can nuke and start over, or try to fix this install, >> whichever is easier. >> >> On 12/11/2020 2:44 PM, Rowland penny via samba wrote: >>> On 11/12/2020 21:20, Dan Egli wrote: >>>> >>>> Problem is: that sam.ldb is the one that's broken (empty) I think. >>>> There's ANOTHER sam.ldb in /var/lib/samba/private that's a bit bigger: >>>> -rw-rw---- 1 root named 4694016 Dec 10 18:05 >>>> /var/lib/samba/private/sam.ldb >>>> >>>> So if samba is looking for a sam.ldb in /var/lib/samba/bind-dns >>>> should I copy the one from private over? >>> >>> No, it looks like something went wrong with the upgrade to Bind9, >>> try reading these: >>> >>> https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End >>> >>> https://wiki.samba.org/index.php/Setting_up_a_BIND_DNS_Server >>> >>> https://wiki.samba.org/index.php/Changing_the_DNS_Back_End_of_a_Samba_AD_DC >>> >>> >>> I am not entirely sure just how you have got to where you are now, >>> but if everything is done correctly (the right commands at the right >>> time) everything should be created/moved for you with minimal manual >>> intervention. >>> >>> Rowland >>> >>> >>> > If this is a new domain, I personally would start again. > > Rowland > > >-- Dan Egli From my Test Server