thr3ads.net - samba - [Samba] Samba trying to connect to a non-existant DC for NTP? [Feb 2024]

If this information is useful, please help other people find it:
Share via:

James B. Byrne

2024-Feb-15 22:07 UTC

[Samba] Samba trying to connect to a non-existant DC for NTP?

Thu Feb 15 21:30:50 UTC 2024 Rowland Penny rpenny at samba.org
wrote:>
> Then I think that is your problem, whilst SMB4-1 no longer physically
> exists, it looks like there are still traces of it in your AD DNS.
> You will need to find these and then delete them, just like you
> did with the duplicate PDC_Emulator SRV record.
I found these:

 samba-ldbsearch --cross-ncs --show-binary   -H /var/db/samba4/private/sam.ldb 
 -b 'DC=brockley,DC=harte-lyne,DC=ca' | grep smb4-1
            mname                    : smb4-1.brockley.harte-lyne.ca
        ns                       : smb4-1.brockley.harte-lyne.ca
        ns                       : smb4-1.brockley.harte-lyne.ca
dn:
DC=smb4-1,DC=brockley.harte-lyne.ca,CN=MicrosoftDNS,DC=DomainDnsZones,DC=brockley,DC=harte-lyne,DC=ca
name: smb4-1
dc: smb4-1
distinguishedName:
DC=smb4-1,DC=brockley.harte-lyne.ca,CN=MicrosoftDNS,DC=DomainDnsZones,DC=brockley,DC=harte-lyne,DC=ca
servicePrincipalName: HOST/smb4-1c-testfmso.brockley.harte-lyne.ca
servicePrincipalName: HOST/smb4-1c-testfmso.brockley.harte-lyne.ca/BROCKLEY
servicePrincipalName: ldap/smb4-1c-testfmso.brockley.harte-lyne.ca/BROCKLEY
servicePrincipalName:
GC/smb4-1c-testfmso.brockley.harte-lyne.ca/brockley.harte-lyne.ca
servicePrincipalName: ldap/smb4-1c-testfmso.brockley.harte-lyne.ca
servicePrincipalName:
HOST/smb4-1c-testfmso.brockley.harte-lyne.ca/brockley.harte-lyne.ca
servicePrincipalName:
ldap/smb4-1c-testfmso.brockley.harte-lyne.ca/brockley.harte-lyne.ca
servicePrincipalName: RestrictedKrbHost/smb4-1c-testfmso.brockley.harte-lyne.ca
servicePrincipalName:
ldap/smb4-1c-testfmso.brockley.harte-lyne.ca/DomainDnsZones.brockley.harte-lyne.ca
servicePrincipalName:
ldap/smb4-1c-testfmso.brockley.harte-lyne.ca/ForestDnsZones.brockley.harte-lyne.ca


How do I get rid of them?

-- 
***          e-Mail is NOT a SECURE channel          ***
        Do NOT transmit sensitive data via e-Mail
   Unencrypted messages have no legal claim to privacy
 Do NOT open attachments nor follow links sent by e-Mail

James B. Byrne                mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited          http://www.harte-lyne.ca
9 Brockley Drive              vox: +1 905 561 1241
Hamilton, Ontario             fax: +1 905 561 0757
Canada  L8E 3C3

Rowland Penny

2024-Feb-16 10:17 UTC

head link

[Samba] Samba trying to connect to a non-existant DC for NTP?

On Thu, 15 Feb 2024 17:07:11 -0500
"James B. Byrne via samba" <samba at lists.samba.org> wrote:
> I found these:
> 
>  samba-ldbsearch --cross-ncs --show-binary   -H
> /var/db/samba4/private/sam.ldb -b 'DC=brockley,DC=harte-lyne,DC=ca'
|
> grep smb4-1 mname                    : smb4-1.brockley.harte-lyne.ca
>         ns                       : smb4-1.brockley.harte-lyne.ca
>         ns                       : smb4-1.brockley.harte-lyne.ca
> dn:
>
DC=smb4-1,DC=brockley.harte-lyne.ca,CN=MicrosoftDNS,DC=DomainDnsZones,DC=brockley,DC=harte-lyne,DC=ca
> name: smb4-1
> dc: smb4-1
> distinguishedName:
>
DC=smb4-1,DC=brockley.harte-lyne.ca,CN=MicrosoftDNS,DC=DomainDnsZones,DC=brockley,DC=harte-lyne,DC=ca
The first one is simple and straight forward, you can remove it with
'samba-tool dns delete', where the usage is:

samba-tool dns delete <server> <zone> <name>
<A|AAAA|PTR|CNAME|NS|MX|SRV|TXT> <data>

If running on a Samba DC <server> can be 127.0.0.1 or localhost or the
DCs hostname The <zone> and <name> can be found from the
'dn:', the
<name> is the first part 'DC=smb4-1' without the 'DC=' and
the <zone>
is the second part 'DC=brockley.harte-lyne.ca', again without the
'DC='. The record type will be 'A' The <data> for an
'A' record is an
'ipv4_address_string', probably '192.168.18.161' from what have
posted
earlier, but please check.

Which will give the command:

samba-tool dns delete 127.0.0.1 brockley.harte-lyne.ca smb4-1 A 192.168.18.161
-Uadministrator

The next can also be removed with samba-tool:

samba-tool spn delete <name>
Where <name> will be the part after 'servicePrincipalName: '
You will also probably have to add '-U administrator' at the end of the
command.
> servicePrincipalName: HOST/smb4-1c-testfmso.brockley.harte-lyne.ca
> servicePrincipalName:
> HOST/smb4-1c-testfmso.brockley.harte-lyne.ca/BROCKLEY
> servicePrincipalName:
> ldap/smb4-1c-testfmso.brockley.harte-lyne.ca/BROCKLEY
> servicePrincipalName:
> GC/smb4-1c-testfmso.brockley.harte-lyne.ca/brockley.harte-lyne.ca
> servicePrincipalName: ldap/smb4-1c-testfmso.brockley.harte-lyne.ca
> servicePrincipalName:
> HOST/smb4-1c-testfmso.brockley.harte-lyne.ca/brockley.harte-lyne.ca
> servicePrincipalName:
> ldap/smb4-1c-testfmso.brockley.harte-lyne.ca/brockley.harte-lyne.ca
> servicePrincipalName:
> RestrictedKrbHost/smb4-1c-testfmso.brockley.harte-lyne.ca
> servicePrincipalName:
>
ldap/smb4-1c-testfmso.brockley.harte-lyne.ca/DomainDnsZones.brockley.harte-lyne.ca
> servicePrincipalName:
>
ldap/smb4-1c-testfmso.brockley.harte-lyne.ca/ForestDnsZones.brockley.harte-lyne.ca
> 
> 
> How do I get rid of them?
> 
Rowland

samba - Feb 2024 - Samba trying to connect to a non-existant DC for NTP?

[Samba] Samba trying to connect to a non-existant DC for NTP?

[Samba] Samba trying to connect to a non-existant DC for NTP?