Rowland penny
2021-Feb-17 15:45 UTC
[Samba] samba-tool join error : NO DNS zone information found in source domain, not replicating DNS
On 17/02/2021 14:31, Dr. Hansj?rg Maurer via samba wrote:> Hi > > we have a samba4 AD-DC running 4.10, which replaced a Win2008 DYC many > years ago. > During this migration? (2008-DC->samba4-dc) sometings seems to went > wrong. > The new DC only misses the a seperate _msdcs.XXX.lan zone, like other > samba4 dc show > > samba-tool dns zonelist server01 -U Administrator > > > ? pszZoneName???????????????? : XXX.lan > ? Flags?????????????????????? : DNS_RPC_ZONE_DSINTEGRATED > DNS_RPC_ZONE_UPDATE_SECURE > ? ZoneType??????????????????? : DNS_ZONE_TYPE_PRIMARY > ? Version???????????????????? : 50 > ? dwDpFlags?????????????????? : DNS_DP_AUTOCREATED > DNS_DP_FOREST_DEFAULT DNS_DP_ENLISTED > ? pszDpFqdn?????????????????? : ForestDnsZones.XXX.lan > > the zone _ msdcs is located as subzone under XXX.lan > > Now I am trying to join a second dc, the join finishes, but shows > > "NO DNS zone information found in source domain, not replicating DNS" > > therefore no DNS partions are created on the new server either. > > Is there a way to fix it? > e.g. by reapplying /usr/share/samba/setup/provision_dnszones*.ldif ? > or running somthing like > /usr/lib64/python3.6/site-packages/samba/provision/sambadns.py > > The zone XXX.lan itself contains only the default values for > servicerecords etc and could be replaced >Are you sure your domain didn't start off with an earlier Windows version, such as 2K or 2003K ? I ask this because you seem to have the earlier dns records. Rowland
Dr. Hansjörg Maurer
2021-Feb-18 06:54 UTC
[Samba] samba-tool join error : NO DNS zone information found in source domain, not replicating DNS
Hi Roland Am 17.02.21 um 16:45 schrieb Rowland penny via samba:> > Are you sure your domain didn't start off with an earlier Windows > version, such as 2K or 2003K ?I am not sure, long time ago, but the domain surely has a 2003 history I found, https://wiki.samba.org/index.php/Samba_AD_DC_Troubleshooting#Issues_with_DNS_during_DC_join which seems tp point to the same direction you think, but there is no solution there for the migration issue . I tried dnscmd \CreateBuiltinDirectoryPartitions (from a Windows host) but it does not suceed I have cloned the dc VM in order to test it in a test seperate environment. Do you see a chance be creating the partions?, e.g. Joining a second dc -> no dns partiotions creating them manually by providing proper values for -rw-r--r--? 1 root root 1572 17. Feb 15:37 provision_dnszones_add.ldif_work -rw-r--r--? 1 root root 2111 17. Feb 15:25 provision_dnszones_add.ldif -rw-r--r--? 1 root root? 403 17. Feb 15:09 provision_dnszones_partitions.ldif -rw-r--r--? 1 root root? 696 17. Feb 15:05 provision_dnszones_modify.ldif ?and add them Regards Hansj?rg> > I ask this because you seem to have the earlier dns records. > > Rowland > > > >-- Dr. Hansj?rg Maurer itsystems Deutschland AG Erzgie?ereistr. 22 80335 M?nchen Tel: +49-89-52 04 68-41 Fax: +49-89-52 04 68-59 E-Mail:hansjoerg.maurer at itsd.de Web:http://www.itsd.de Amtsgericht M?nchen HRB 132146 USt-IdNr. DE 812991301 Steuer-Nr. 143/100/81575 Aufsichtsratsvorsitzender: Stefan Adam Vorstand: Dr. Michael Krocka Dr. Hansj?rg Maurer ---------------------------- Unser System ist mit einem Mailverschluesselungs-Gateway ausgestattet. Wenn Sie moechten, dass an Sie gerichtete E-Mails verschluesselt werden, senden Sie einfach eine S/MIME-signierte E-Mail oder Ihren PGP Public Key an hansjoerg.maurer at itsd.de. Our system is equipped with an email encryption gateway. If you want email sent to you to be encrypted please send a S/MIME signed email or your PGP public key to hansjoerg.maurer at itsd.de.