samba - Sep 2023 - Failed to join domain: failed to find DC for domain...

> Why can it not find a DC ? Is there a firewall or similar running ?
>
I have opened the firewall on the DC. Which ports do I need to open on the
DM?  Apparently I have nothing opened on the DM but I opened the required
ports according to
https://wiki.samba.org/index.php/Samba_Domain_Member_Port_Usage.

[Sat Sep 09 13:56:22] [root at D01~/.bin$]./check_smb.sh
 148779 pts/1    S+     0:00 /bin/bash ./check_smb.sh
 148781 pts/1    S+     0:00 grep -E samba|smb|nmb|winbind
[Sat Sep 09 13:56:37] [root at D01~/.bin$]net ads join -U administrator
Password for [HOME\administrator]:
Failed to join domain: failed to find DC for domain HOME - The object was
not found.



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
In all things, Be Intentional.


On Sat, Sep 9, 2023 at 11:57?AM Rowland Penny via samba <
samba at lists.samba.org> wrote:
> On Sat, 9 Sep 2023 11:29:53 -0400
> Rob Campbell via samba <samba at lists.samba.org> wrote:
>
> > >
> > > It looks like DNS is failing, does /etc/resolv.conf look like
this:
> > >
> > > search home.rob-campbell.lan
> > > nameserver A.DC.IPADDRESS
> > >
> >
> > This is what it looks like in this order (if that matters)
> > nameserver 10.0.0.10
> > nameserver 10.0.0.1
> > search HOME.ROB-CAMPBELL.LAN
>
> The order doesn't matter, just so long as the first nameserver
> (10.0.0.10) is a DC.
>
> >
> > >
> > > While you are checking, does /etc/hosts contain a line like this:
> > >
> > > computers_ip computers FQDN computers short_hostname
> > >
> >
> > Yes
> >
> > root at D01:~/.bin# realm leave
>
> I suggest you stop using realmd, it isn't a Samba product and you do
> not need it, the same goes for sssd if it is also installed.
>
> > root at D01:~/.bin# net ads join -U administrator
> > Password for [HOME\administrator]:
> > Failed to join domain: failed to connect to AD: No logon servers are
> > currently available to service the logon request.
>
> Why can it not find a DC ? Is there a firewall or similar running ?
>
I have opened the firewall on the DC. Which ports do I need to open on the
DM?  Apparently I have nothing opened on the DM but I opened the required
ports.


>
> > root at D01:~/.bin# samba-tool domain join home.rob-campbell.lan
MEMBER
> > -U administrator
>
> That does basically the same as 'net ads join', so if one fails,
the
> other isn't likely to work.
>
>
> >
> > ./check_smb.sh
> >  144310 ?        Ss     0:00 smbd
> >  144311 ?        S      0:00 smbd
> >  144312 ?        S      0:00 smbd
> >  144320 ?        Ss     0:00 nmbd
> >  144321 pts/1    S+     0:00 /bin/bash ./check_smb.sh
> >  144323 pts/1    S+     0:00 grep -E samba|smb|nmb|winbind
>
> From that, it looks like smbd and nmbd are running, but winbind isn't.
> At this point (before the join), none of them should be running.
>
I killed them all and still not working.
>
> Rowland
>
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>

On Sat, 9 Sep 2023 14:01:34 -0400
Rob Campbell via samba <samba at lists.samba.org> wrote:
> > Why can it not find a DC ? Is there a firewall or similar running ?
> >
> 
> I have opened the firewall on the DC. Which ports do I need to open
> on the DM?  Apparently I have nothing opened on the DM but I opened
> the required ports according to
> https://wiki.samba.org/index.php/Samba_Domain_Member_Port_Usage.
> 
> [Sat Sep 09 13:56:22] [root at D01~/.bin$]./check_smb.sh
>  148779 pts/1    S+     0:00 /bin/bash ./check_smb.sh
>  148781 pts/1    S+     0:00 grep -E samba|smb|nmb|winbind
> [Sat Sep 09 13:56:37] [root at D01~/.bin$]net ads join -U administrator
> Password for [HOME\administrator]:
> Failed to join domain: failed to find DC for domain HOME - The object
> was not found.
> 
The easiest way to check if it is the firewall, turn it off, on both
the DC and the Unix domain member.

Rowland