lists at zxt10d.de
2024-Jan-04 19:17 UTC
[Samba] Fresh ad installation - Win2022 can't join
Am 04.01.2024 um 13:28 schrieb lists--- via samba:> Am 04.01.2024 um 12:36 schrieb Rowland Penny via samba: >> On Thu, 4 Jan 2024 12:12:57 +0100 >> lists--- via samba <samba at lists.samba.org> wrote: >> >>> Am 04.01.2024 um 11:55 schrieb Rowland Penny via samba: >>>> On Thu, 4 Jan 2024 11:19:17 +0100 >>>> lists--- via samba <samba at lists.samba.org> wrote: >>>> >>>>> Am 04.01.2024 um 10:37 schrieb Rowland Penny via samba: >>>> >>>>>> Lets start with the obvious, does the record exist, running the >>>>>> following command should produce a record for every DC: >>>>>> >>>>>> host -t SRV _ldap._tcp.dc._msdcs.augusta.domain.tld. >>>>> >>>>> root at dc:/home/torsten# host -t SRV >>>>> _ldap._tcp.dc._msdcs.augusta.domain.tld. >>>>> _ldap._tcp.dc._msdcs.augusta.domain.tld has SRV record 0 100 389 >>>>> dc.augusta.domain.tld. >>>> >>>> That shows the 'missing' record does exist. >>>> >>>>> >>>>>> How are you trying to join the 2022 machine ? As a DC or a domain >>>>>> member ? >>>>> >>>>> As a domain member >>>> >>>> Then it should work. >>>> >>>>> >>>>>> The Latter should work, but there is this bug report: >>>>>> >>>>>> https://bugzilla.samba.org/show_bug.cgi?id=15495 >>>>> >>>>> But its a bug report regarding "joining a *nix machine to an >>>>> existing MS-based AD", isn't it? >>>>> >>>> >>>> That doesn't preclude it also not working in the reverse direction. >>>> >>>> The problem seems to be that the Windows server cannot find a record >>>> that you have now proved exists, so is the windows server using the >>>> DC as its nameserver ? >>> >>> Yes. The first nameserver is the ip-address of the samba-ad-dc, the >>> second is the routers ip-address. >> >> I would remove the routers IP. >> >> Are you trying to join using Administrator ? > > Yes! > >> I take it you are trying to join using the GUI, perhaps using >> powershell might work, see here: >> >> https://learn.microsoft.com/en-us/powershell/module/microsoft.powershell.management/add-computer?view=powershell-5.1 > > I'll test that later ... thanks a lot ;) > >> You could then specify which DC to use during the join. >> >> Rowland > > Cheers, > TorstenThat does not work, too ... PS C:\Users\Administrator> Add-Computer -ComputerName PCNAME -DomainName augusta.domain.tld -Server DC -Credential augusta.domain.tld\Administrator -PassThru -Verbose AUSF?HRLICH: Ausf?hren des Vorgangs "Dom?ne "augusta.domain.tld\DC" beitreten" f?r das Ziel "PCNAME". Add-Computer : Fehler beim Beitreten des Computers "PCNAME" aus seiner aktuellen Arbeitsgruppe "BOX" zur Dom?ne "augusta.domain.tld\DC". Fehlermeldung: Der angegebene Server kann den angeforderten Vorgang nicht ausf?hren. In Zeile:1 Zeichen:1 + Add-Computer -ComputerName PCNAME -DomainName augusta.domain.tld ... + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + CategoryInfo : OperationStopped: (PCNAME:String) [Add-Computer], InvalidOperationException + FullyQualifiedErrorId : FailToJoinDomainFromWorkgroup,Microsoft.PowerShell.Commands.AddComputerCommand HasSucceeded ComputerName ------------ ------------ False NAME PS C:\Users\Administrator> The NAME has 4 letters and 2 number, domain has 3 letters, a - and some more letters, tld is de ... so there aren't any strange things in it ... Cheers, Torsten
lists at zxt10d.de
2024-Jan-05 07:15 UTC
[Samba] Fresh ad installation - Win2022 can't join
Good morning :) Am 04.01.2024 um 20:17 schrieb lists--- via samba:> Am 04.01.2024 um 13:28 schrieb lists--- via samba: >> Am 04.01.2024 um 12:36 schrieb Rowland Penny via samba: >>> On Thu, 4 Jan 2024 12:12:57 +0100 >>> lists--- via samba <samba at lists.samba.org> wrote: >>> >>>> Am 04.01.2024 um 11:55 schrieb Rowland Penny via samba: >>>>> On Thu, 4 Jan 2024 11:19:17 +0100 >>>>> lists--- via samba <samba at lists.samba.org> wrote: >>>>> >>>>>> Am 04.01.2024 um 10:37 schrieb Rowland Penny via samba: >>>>> >>>>>>> Lets start with the obvious, does the record exist, running the >>>>>>> following command should produce a record for every DC: >>>>>>> >>>>>>> host -t SRV _ldap._tcp.dc._msdcs.augusta.domain.tld. >>>>>> >>>>>> root at dc:/home/torsten# host -t SRV >>>>>> _ldap._tcp.dc._msdcs.augusta.domain.tld. >>>>>> _ldap._tcp.dc._msdcs.augusta.domain.tld has SRV record 0 100 389 >>>>>> dc.augusta.domain.tld. >>>>> >>>>> That shows the 'missing' record does exist. >>>>> >>>>>> >>>>>>> How are you trying to join the 2022 machine ? As a DC or a domain >>>>>>> member ? >>>>>> >>>>>> As a domain member >>>>> >>>>> Then it should work. >>>>> >>>>>> >>>>>>> The Latter should work, but there is this bug report: >>>>>>> >>>>>>> https://bugzilla.samba.org/show_bug.cgi?id=15495 >>>>>> >>>>>> But its a bug report regarding "joining a *nix machine to an >>>>>> existing MS-based AD", isn't it? >>>>>> >>>>> >>>>> That doesn't preclude it also not working in the reverse direction. >>>>> >>>>> The problem seems to be that the Windows server cannot find a record >>>>> that you have now proved exists, so is the windows server using the >>>>> DC as its nameserver ? >>>> >>>> Yes. The first nameserver is the ip-address of the samba-ad-dc, the >>>> second is the routers ip-address. >>> >>> I would remove the routers IP. >>> >>> Are you trying to join using Administrator ? >> >> Yes! >> >>> I take it you are trying to join using the GUI, perhaps using >>> powershell might work, see here: >>> >>> https://learn.microsoft.com/en-us/powershell/module/microsoft.powershell.management/add-computer?view=powershell-5.1 >> >> I'll test that later ... thanks a lot ;) >> >>> You could then specify which DC to use during the join. >>> >>> Rowland >> >> Cheers, >> Torsten > > That does not work, too ... > > PS C:\Users\Administrator> Add-Computer -ComputerName PCNAME -DomainName > augusta.domain.tld -Server DC -Credential > augusta.domain.tld\Administrator -PassThru -Verbose > AUSF?HRLICH: Ausf?hren des Vorgangs "Dom?ne "augusta.domain.tld\DC" > beitreten" f?r das Ziel "PCNAME". > Add-Computer : Fehler beim Beitreten des Computers "PCNAME" aus seiner > aktuellen Arbeitsgruppe "BOX" zur Dom?ne "augusta.domain.tld\DC". > Fehlermeldung: Der angegebene Server kann den angeforderten Vorgang > nicht ausf?hren. > In Zeile:1 Zeichen:1 > + Add-Computer -ComputerName PCNAME -DomainName augusta.domain.tld ... > + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > ??? + CategoryInfo????????? : OperationStopped: (PCNAME:String) > [Add-Computer], InvalidOperationException > ??? + FullyQualifiedErrorId : > FailToJoinDomainFromWorkgroup,Microsoft.PowerShell.Commands.AddComputerCommand > > > HasSucceeded ComputerName > ------------ ------------ > False??????? NAME > > > PS C:\Users\Administrator> > > The NAME has 4 letters and 2 number, domain has 3 letters, a - and some > more letters, tld is de ... so there aren't any strange things in it ... > > Cheers, > Torstenwell, yesterday evening I did a second installation (dc1.augusta...), using Bookworm and the by Debian provided 4.17.12 packages. The result is nearly the same. So I shutdown that VM, and started the one I worked on yesterday (dc.augusta...) - and samba did not start automatically. I had to "systemctl stop smbd|nmbd|winbind", followed by "samba" to start the services. The logfile show'd: [2024/01/05 07:37:00.350479, 0] source4/samba/server.c:633(binary_smbd_main) samba version 4.19.3-Debian started. Copyright Andrew Tridgell and the Samba Team 1992-2023 [2024/01/05 07:37:00.465579, 0] source4/samba/server.c:908(binary_smbd_main) binary_smbd_main: samba: using 'prefork' process model [2024/01/05 07:37:20.612811, 0] source4/dsdb/dns/dns_update.c:85(dnsupdate_nameupdate_done) dnsupdate_nameupdate_done: Failed DNS update with exit code 110 So I run it manually: [output] root at dc:~# samba_dnsupdate --verbose --use-samba-tool IPs: ['2003:d1:bf0d:3100:215:5dff:feb2:1901', '192.168.178.37'] Looking for DNS entry A dc.augusta.domain.tld 192.168.178.37 as dc.augusta.domain.tld. Lookup of dc.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for A dc.augusta.domain.tld 192.168.178.37 need update: A dc.augusta.domain.tld 192.168.178.37 need cache add: AAAA dc.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 Looking for DNS entry AAAA dc.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 as dc.augusta.domain.tld. Lookup of dc.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for AAAA dc.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 need update: AAAA dc.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 Looking for DNS entry CNAME 00f33ed3-e50c-492d-a4bd-ab6cc2a2e54a._msdcs.augusta.domain.tld dc.augusta.domain.tld as 00f33ed3-e50c-492d-a4bd-ab6cc2a2e54a._msdcs.augusta.domain.tld. The DNS entry CNAME 00f33ed3-e50c-492d-a4bd-ab6cc2a2e54a._msdcs.augusta.domain.tld dc.augusta.domain.tld, queried as 00f33ed3-e50c-492d-a4bd-ab6cc2a2e54a._msdcs.augusta.domain.tld. does not hold this record type need update: CNAME 00f33ed3-e50c-492d-a4bd-ab6cc2a2e54a._msdcs.augusta.domain.tld dc.augusta.domain.tld Looking for DNS entry NS augusta.domain.tld dc.augusta.domain.tld as augusta.domain.tld. The DNS entry NS augusta.domain.tld dc.augusta.domain.tld, queried as augusta.domain.tld. does not hold this record type need update: NS augusta.domain.tld dc.augusta.domain.tld Looking for DNS entry NS _msdcs.augusta.domain.tld dc.augusta.domain.tld as _msdcs.augusta.domain.tld. The DNS entry NS _msdcs.augusta.domain.tld dc.augusta.domain.tld, queried as _msdcs.augusta.domain.tld. does not hold this record type need update: NS _msdcs.augusta.domain.tld dc.augusta.domain.tld Looking for DNS entry A augusta.domain.tld 192.168.178.37 as augusta.domain.tld. Lookup of augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for A augusta.domain.tld 192.168.178.37 need update: A augusta.domain.tld 192.168.178.37 need cache add: AAAA augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 Looking for DNS entry AAAA augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 as augusta.domain.tld. Lookup of augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for AAAA augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 need update: AAAA augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 Looking for DNS entry SRV _ldap._tcp.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.augusta.domain.tld. The DNS entry SRV _ldap._tcp.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry SRV _ldap._tcp.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.dc._msdcs.augusta.domain.tld. The DNS entry SRV _ldap._tcp.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.dc._msdcs.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry SRV _ldap._tcp.55afa055-bc2a-420b-b8aa-1397a43e98d2.domains._msdcs.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.55afa055-bc2a-420b-b8aa-1397a43e98d2.domains._msdcs.augusta.domain.tld. The DNS entry SRV _ldap._tcp.55afa055-bc2a-420b-b8aa-1397a43e98d2.domains._msdcs.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.55afa055-bc2a-420b-b8aa-1397a43e98d2.domains._msdcs.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.55afa055-bc2a-420b-b8aa-1397a43e98d2.domains._msdcs.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry SRV _kerberos._tcp.augusta.domain.tld dc.augusta.domain.tld 88 as _kerberos._tcp.augusta.domain.tld. The DNS entry SRV _kerberos._tcp.augusta.domain.tld dc.augusta.domain.tld 88, queried as _kerberos._tcp.augusta.domain.tld. does not hold this record type need update: SRV _kerberos._tcp.augusta.domain.tld dc.augusta.domain.tld 88 Looking for DNS entry SRV _kerberos._udp.augusta.domain.tld dc.augusta.domain.tld 88 as _kerberos._udp.augusta.domain.tld. The DNS entry SRV _kerberos._udp.augusta.domain.tld dc.augusta.domain.tld 88, queried as _kerberos._udp.augusta.domain.tld. does not hold this record type need update: SRV _kerberos._udp.augusta.domain.tld dc.augusta.domain.tld 88 Looking for DNS entry SRV _kerberos._tcp.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 88 as _kerberos._tcp.dc._msdcs.augusta.domain.tld. The DNS entry SRV _kerberos._tcp.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 88, queried as _kerberos._tcp.dc._msdcs.augusta.domain.tld. does not hold this record type need update: SRV _kerberos._tcp.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 88 Looking for DNS entry SRV _kpasswd._tcp.augusta.domain.tld dc.augusta.domain.tld 464 as _kpasswd._tcp.augusta.domain.tld. The DNS entry SRV _kpasswd._tcp.augusta.domain.tld dc.augusta.domain.tld 464, queried as _kpasswd._tcp.augusta.domain.tld. does not hold this record type need update: SRV _kpasswd._tcp.augusta.domain.tld dc.augusta.domain.tld 464 Looking for DNS entry SRV _kpasswd._udp.augusta.domain.tld dc.augusta.domain.tld 464 as _kpasswd._udp.augusta.domain.tld. The DNS entry SRV _kpasswd._udp.augusta.domain.tld dc.augusta.domain.tld 464, queried as _kpasswd._udp.augusta.domain.tld. does not hold this record type need update: SRV _kpasswd._udp.augusta.domain.tld dc.augusta.domain.tld 464 Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.Default-First-Site-Name._sites.augusta.domain.tld. The DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.Default-First-Site-Name._sites.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld. The DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry SRV _kerberos._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 88 as _kerberos._tcp.Default-First-Site-Name._sites.augusta.domain.tld. The DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.Default-First-Site-Name._sites.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld. The DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry SRV _kerberos._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 88 as _kerberos._tcp.Default-First-Site-Name._sites.augusta.domain.tld. The DNS entry SRV _kerberos._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 88, queried as _kerberos._tcp.Default-First-Site-Name._sites.augusta.domain.tld. does not hold this record type need update: SRV _kerberos._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 88 Looking for DNS entry SRV _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 88 as _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld. The DNS entry SRV _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 88, queried as _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld. does not hold this record type need update: SRV _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.augusta.domain.tld dc.augusta.domain.tld 88 Looking for DNS entry SRV _ldap._tcp.pdc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.pdc._msdcs.augusta.domain.tld. The DNS entry SRV _ldap._tcp.pdc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.pdc._msdcs.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.pdc._msdcs.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry A gc._msdcs.augusta.domain.tld 192.168.178.37 as gc._msdcs.augusta.domain.tld. Lookup of gc._msdcs.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for A gc._msdcs.augusta.domain.tld 192.168.178.37 need update: A gc._msdcs.augusta.domain.tld 192.168.178.37 need cache add: AAAA gc._msdcs.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 Looking for DNS entry AAAA gc._msdcs.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 as gc._msdcs.augusta.domain.tld. Lookup of gc._msdcs.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for AAAA gc._msdcs.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 need update: AAAA gc._msdcs.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 Looking for DNS entry SRV _gc._tcp.augusta.domain.tld dc.augusta.domain.tld 3268 as _gc._tcp.augusta.domain.tld. The DNS entry SRV _gc._tcp.augusta.domain.tld dc.augusta.domain.tld 3268, queried as _gc._tcp.augusta.domain.tld. does not hold this record type need update: SRV _gc._tcp.augusta.domain.tld dc.augusta.domain.tld 3268 Looking for DNS entry SRV _ldap._tcp.gc._msdcs.augusta.domain.tld dc.augusta.domain.tld 3268 as _ldap._tcp.gc._msdcs.augusta.domain.tld. The DNS entry SRV _ldap._tcp.gc._msdcs.augusta.domain.tld dc.augusta.domain.tld 3268, queried as _ldap._tcp.gc._msdcs.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.gc._msdcs.augusta.domain.tld dc.augusta.domain.tld 3268 Looking for DNS entry SRV _gc._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 3268 as _gc._tcp.Default-First-Site-Name._sites.augusta.domain.tld. The DNS entry SRV _gc._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 3268, queried as _gc._tcp.Default-First-Site-Name._sites.augusta.domain.tld. does not hold this record type need update: SRV _gc._tcp.Default-First-Site-Name._sites.augusta.domain.tld dc.augusta.domain.tld 3268 Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.augusta.domain.tld dc.augusta.domain.tld 3268 as _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.augusta.domain.tld. The DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.augusta.domain.tld dc.augusta.domain.tld 3268, queried as _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.augusta.domain.tld dc.augusta.domain.tld 3268 Looking for DNS entry A DomainDnsZones.augusta.domain.tld 192.168.178.37 as DomainDnsZones.augusta.domain.tld. Lookup of DomainDnsZones.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for A DomainDnsZones.augusta.domain.tld 192.168.178.37 need update: A DomainDnsZones.augusta.domain.tld 192.168.178.37 need cache add: AAAA DomainDnsZones.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 Looking for DNS entry AAAA DomainDnsZones.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 as DomainDnsZones.augusta.domain.tld. Lookup of DomainDnsZones.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for AAAA DomainDnsZones.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 need update: AAAA DomainDnsZones.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 Looking for DNS entry SRV _ldap._tcp.DomainDnsZones.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.DomainDnsZones.augusta.domain.tld. The DNS entry SRV _ldap._tcp.DomainDnsZones.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.DomainDnsZones.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.DomainDnsZones.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.augusta.domain.tld. The DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry A ForestDnsZones.augusta.domain.tld 192.168.178.37 as ForestDnsZones.augusta.domain.tld. Lookup of ForestDnsZones.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for A ForestDnsZones.augusta.domain.tld 192.168.178.37 need update: A ForestDnsZones.augusta.domain.tld 192.168.178.37 need cache add: AAAA ForestDnsZones.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 Looking for DNS entry AAAA ForestDnsZones.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 as ForestDnsZones.augusta.domain.tld. Lookup of ForestDnsZones.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for AAAA ForestDnsZones.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 need update: AAAA ForestDnsZones.augusta.domain.tld 2003:d1:bf0d:3100:215:5dff:feb2:1901 Looking for DNS entry SRV _ldap._tcp.ForestDnsZones.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.ForestDnsZones.augusta.domain.tld. The DNS entry SRV _ldap._tcp.ForestDnsZones.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.ForestDnsZones.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.ForestDnsZones.augusta.domain.tld dc.augusta.domain.tld 389 Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.augusta.domain.tld dc.augusta.domain.tld 389 as _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.augusta.domain.tld. The DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.augusta.domain.tld dc.augusta.domain.tld 389, queried as _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.augusta.domain.tld. does not hold this record type need update: SRV _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.augusta.domain.tld dc.augusta.domain.tld 389 need cache remove: AAAA dc.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 Looking for DNS entry AAAA dc.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 as dc.augusta.domain.tld. Lookup of dc.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for AAAA dc.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 need cache remove: AAAA augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 Looking for DNS entry AAAA augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 as augusta.domain.tld. Lookup of augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for AAAA augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 need cache remove: AAAA gc._msdcs.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 Looking for DNS entry AAAA gc._msdcs.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 as gc._msdcs.augusta.domain.tld. Lookup of gc._msdcs.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for AAAA gc._msdcs.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 need cache remove: AAAA DomainDnsZones.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 Looking for DNS entry AAAA DomainDnsZones.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 as DomainDnsZones.augusta.domain.tld. Lookup of DomainDnsZones.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for AAAA DomainDnsZones.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 need cache remove: AAAA ForestDnsZones.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 Looking for DNS entry AAAA ForestDnsZones.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 as ForestDnsZones.augusta.domain.tld. Lookup of ForestDnsZones.augusta.domain.tld. succeeded, but we failed to find a matching DNS entry for AAAA ForestDnsZones.augusta.domain.tld 2003:d1:bf47:a200:215:5dff:feb2:1901 34 DNS updates and 0 DNS deletes needed ^C Traceback (most recent call last): File "/usr/sbin/samba_dnsupdate", line 181, in get_credentials creds.get_named_ccache(lp, ccachename) RuntimeError: kinit for DC$@AUGUSTA.domain.tld failed (Cannot contact any KDC for requested realm) During handling of the above exception, another exception occurred: Traceback (most recent call last): File "/usr/sbin/samba_dnsupdate", line 883, in <module> creds = get_credentials(lp) ^^^^^^^^^^^^^^^^^^^ File "/usr/sbin/samba_dnsupdate", line 188, in get_credentials os.unlink(ccachename) KeyboardInterrupt root at dc:~# [/output] As "kinit for DC$@AUGUSTA.domain.tld failed" I run: root at dc:~# kinit administrator kinit: KDC f?r Realm ?AUGUSTA.DOMAIN.TLD? kann nicht gefunden werden bei Anf?ngliche Anmeldedaten werden geholt. root at dc:~# Cheers, Torsten