Stefan Kania
2021-Nov-18 10:55 UTC
[Samba] Trust creation - ERROR: LOCAL_DC: CreateTrustedDomainEx2 - ERROR(0xC00000E0) - The specified domain already exists.
Try if you cann resolve the SRV-records in both directions from both DCs. On the Linux DC do: host -t srv _ldap._tcp.samba.local host -t srv _ldap._tcp.win.local On the Windows DC you can use "nslookup". Only if both DCs can resolve the SRV-records you can establish the trust. I normaly use a bind9 as a DNS-Proxy.I did a tutorial on the 2019 SambaXP about trusts here you will find the handout, it will describe how to set up a DNS-proxy https://www.kania-online.de/wp-content/uploads/2019/06/trusts-tutorial-en.pdf Am 18.11.21 um 10:52 schrieb Emilian Mitocariu via samba:> The samba DCs have a bind9 DNS backend which forwards to a standalone > internal DNS which at his turn forwards win.local to all the DCs in the > windows domain > > The windows domain has a conditional forwarder pointing directly to all DCs > from samba.local. > Should I change the conditional forwarder on the windows domain to point at > the standalone internal DNS, which forwards samba.local to the DCs in that > domain? > > On Thu, Nov 18, 2021 at 11:42 AM Stefan Kania via samba < > samba at lists.samba.org> wrote: > >> Do you have a DNS-Proxy between your Domains? Without you can't resolve >> the SRV-records >>-- Stefan Kania Landweg 13 25693 St. Michaelisdonn Signieren jeder E-Mail hilft Spam zu reduzieren und sch?tzt Ihre Privatsph?re. Ein kostenfreies Zertifikat erhalten Sie unter https://www.dgn.de/dgncert/index.html Download der root-Zertifikate: https://www.dgn.de/dgncert/downloads.html
Emilian Mitocariu
2021-Nov-18 11:11 UTC
[Samba] Trust creation - ERROR: LOCAL_DC: CreateTrustedDomainEx2 - ERROR(0xC00000E0) - The specified domain already exists.
Thanks, I've actually read that tutorial before :) and I have an internal bind9 DNS separate from the AD that I'm already using as a DNS-proxy As for the SRV records you mentioned, they get resolved on DCs from both domains. I don't think the problem comes from domains not being able to resolve each other, considering that they do and the error I'm getting is: ERROR: LOCAL_DC[SAMBA-DC3]: CreateTrustedDomainEx2 - ERROR(0xC00000E0) - The specified domain already exists. On Thu, Nov 18, 2021 at 12:56 PM Stefan Kania via samba < samba at lists.samba.org> wrote:> Try if you cann resolve the SRV-records in both directions from both > DCs. On the Linux DC do: > host -t srv _ldap._tcp.samba.local > > host -t srv _ldap._tcp.win.local > > On the Windows DC you can use "nslookup". > Only if both DCs can resolve the SRV-records you can establish the > trust. I normaly use a bind9 as a DNS-Proxy.I did a tutorial on the 2019 > SambaXP about trusts here you will find the handout, it will describe > how to set up a DNS-proxy > > https://www.kania-online.de/wp-content/uploads/2019/06/trusts-tutorial-en.pdf >