I think I'm nearly there. I got to the point where I was running net ads
join -U Administrator, but it does nothing when I do that:
?# net ads join -U Administrator
Enter Administrator's password:<enter password>
at which point it just sits there. Out of curosity, I ran strace on the
net program as I was attempting to join. It shows reading each character
individually, but not doing anything else. It just continues to look for
input:
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "X", 1024)????????????????????? = 1
read(0, "\r", 1024)???????????????????? = 1
read(0, <sits here for eternity>
I doubt I've encountered a bug, that's too big and ugly to have escaped
detection. So what am I doing wrong?
My updated smb.conf (sans comments):
[global]
??????? workgroup = eglifamily
??????? security = ADS
??????? realm = eglifamily.name
??????? winbind refresh tickets = Yes
??????? vfs objects = acl_xattr
??????? map acl inherit = Yes
??????? store dos attributes = Yes
??????? dedicated keytab file = /etc/krb5.keytab
??????? kerberos method = secrets and keytab
??????? winbind use default domain = yes
??????? winbind enum users = yes
??????? winbind enum groups = yes
??????? dmap config * : backend = autorid
??????? idmap config * : range = 10000-24999999
??????? idmap config * : rangesize = 200000
??????? template shell = /bin/bash
??????? template homedir = /bulk/home/%U
??????? username map = /var/lib/samba/etc/user.map
[homes]
??????? comment = Home Directories
??????? browseable = no
[printers]
??????? comment = All Printers
??????? path = /var/spool/samba
??????? browseable = no
??????? guest ok = no
??????? writable = no
??????? printable = yes
Thanks for you help so far!
On 2/7/2021 2:52 AM, Rowland penny via samba wrote:> On 07/02/2021 01:13, Dan Egli wrote:
>>
>> # samba-tool dns zonecreate 192.168.10.3 10.168.182.in-addr.arpa
>> -UAdministrator%%<password>
>
>
> Try it like this:
>
> samba-tool dns zonecreate 192.168.10.3 10.168.182.in-addr.arpa
> -UAdministrator
>
> It will prompt you for the password.
>
> If this doesn't work, do you want to try provisioning again, but in a
> different way ?
>
> If so try like this:
>
> samba-tool domain provision --use-rfc2307 --domain=EGLIFAMILY
> --realm=EGLIFAMILY.NAME --adminpass=xxxxxxxxxx
>
> Where 'xxxxxxxxxx' contains characters from three of the following
> categories:
>
> ??? Uppercase letters
>
> ??? Lowercase letters
>
> ??? numbers
>
> ??? Nonalphanumeric characters:
~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/
>
> ??? Any Unicode character that is categorized as an alphabetic
> character but is not uppercase or lowercase.
>
> The password needs to be at least 7 characters long.
>
> For instance (Don't use this): P4ssW*rd
>
> Rowland
>
>
>