samba - Nov 2023 - samba-tool dns zoneoptions --mark-old-records-static

Sorry for the 'CC', here is the result :
search error - LDAP error 32 LDAP_NO_SUCH_OBJECT -  <acl_read: Error
retrieving instanceType for base. at
../../source4/dsdb/samdb/ldb_modules/acl_read.c:967> <>

Samuel

Le mer. 8 nov. 2023 ? 17:06, Rowland Penny via samba <samba at
lists.samba.org>
a ?crit :
> On Wed, 8 Nov 2023 16:58:23 +0100
> Sam R <sr42354 at gmail.com> wrote:
>
> > @Wilfred : Thank for that good tip but when I test this command I get
> > ; Usage: samba-tool dns zoneoptions <server> <zone>
[options]
> >
> > @Rowland : Yes server1 is one of my 2 DC and example.com my domain and
> > first DNS zone ( of course I change the name here )
> >
>
> OK, if you run this (might have to install ldb-tools), does it return
> anything:
>
> sudo ldbsearch -H ldap://server1 -P -b
>
"DC=example.com,CN=MicrosoftDNS,DC=DomainDNSZones,DC=example,DC=com"
-s
> sub '(&(objectClass=dnsNode)(!(dNSTombstoned=TRUE)))' dnsRecord
name
>
> That is all supposed to be on one line and will need modifying for your
> actual dns.
>
> Rowland
>
> PS: please do not 'CC' me, just reply to the list.
>
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>

On Wed, 8 Nov 2023 17:11:45 +0100
Sam R via samba <samba at lists.samba.org> wrote:
> Sorry for the 'CC', here is the result :
> search error - LDAP error 32 LDAP_NO_SUCH_OBJECT -  <acl_read: Error
> retrieving instanceType for base. at
> ../../source4/dsdb/samdb/ldb_modules/acl_read.c:967> <>
> 
> 
When I run it, I get every machine in the AD forward zone and that
command is what your original samba-tool command runs.

Try this command:

sudo samba-tool dns zonelist server1 -P

Is 'example.com' listed ?

Rowland

But this one return a lot of objects :
sudo ldbsearch -H ldap://server1 -P
-b"DC=example.com,CN=MicrosoftDNS,DC=ForestDnsZones,DC=exemple,DC=com"
-s sub '(&(objectClass=dnsNode)(!(dNSTombstoned=TRUE)))' dnsRecord
name

@Wilfred : Sorry I fogot an argument, but if I ajust the command I have the
same answer than with --mark-old-records-static=2021-03-30

Samuel

Le mer. 8 nov. 2023 ? 17:11, Sam R <sr42354 at gmail.com> a ?crit :
> Sorry for the 'CC', here is the result :
> search error - LDAP error 32 LDAP_NO_SUCH_OBJECT -  <acl_read: Error
> retrieving instanceType for base. at
> ../../source4/dsdb/samdb/ldb_modules/acl_read.c:967> <>
>
> Samuel
>
> Le mer. 8 nov. 2023 ? 17:06, Rowland Penny via samba <
> samba at lists.samba.org> a ?crit :
>
>> On Wed, 8 Nov 2023 16:58:23 +0100
>> Sam R <sr42354 at gmail.com> wrote:
>>
>> > @Wilfred : Thank for that good tip but when I test this command I
get
>> > ; Usage: samba-tool dns zoneoptions <server> <zone>
[options]
>> >
>> > @Rowland : Yes server1 is one of my 2 DC and example.com my domain
and
>> > first DNS zone ( of course I change the name here )
>> >
>>
>> OK, if you run this (might have to install ldb-tools), does it return
>> anything:
>>
>> sudo ldbsearch -H ldap://server1 -P -b
>>
"DC=example.com,CN=MicrosoftDNS,DC=DomainDNSZones,DC=example,DC=com"
-s
>> sub '(&(objectClass=dnsNode)(!(dNSTombstoned=TRUE)))'
dnsRecord name
>>
>> That is all supposed to be on one line and will need modifying for your
>> actual dns.
>>
>> Rowland
>>
>> PS: please do not 'CC' me, just reply to the list.
>>
>>
>>
>> --
>> To unsubscribe from this list go to the following URL and read the
>> instructions:  https://lists.samba.org/mailman/options/samba
>>
>