Displaying 20 results from an estimated 8000 matches similar to: "Samba and CNAME"
2018 Jul 24
0
Samba and CNAME
You can remember this.
If you join a server, that make sure that that servers "hostname" gets an A and PTR record.
The PTR is most important. Now if you creat a CNAME now, through PTR it knows its "original" hostname
And kerberos works, this is how i do all my setups.
As example.
REALM : INTERNAL.EXAMPLE.COM
FQDN : test-dc1.internal.example.com
Hostname: test-dc1
SPN
2018 Jul 24
0
Samba and CNAME
Hello,
On Sun, 22 Jul 2018 15:00:58 +0200
Henry Jensen via samba <samba at lists.samba.org> wrote:
> we successfully migrated from a Samba 3.x NT Domain to a Samba AD Domain
> using Samba 4.7.x.
>
> However, there are still some issues and I hope for your help.
>
> The biggest problem so far follows:
>
> For historical reasons our Samba file servers carry a lot
2023 Jan 31
2
Upgrading from Samba 4.8.2 to 4.15.5
31.01.2023 08:55, Matt Savin via samba ?????:
> In group policies use DNS aliases, then you'll need to change only DNS
> entries for these aliases to point to a new host(s).
I'd say don't use simple dns aliases (cnames) in a DC, but use SPNs instead
(see samba-tool spn). This will manage CNAMEs too, and also manages the KRB
tickets and proper autentication of the server to the
2023 Jan 31
1
The link (or more particularity the lack of a link) between AD SPNs and DNS
On Tue, 2023-01-31 at 10:13 +0300, Michael Tokarev via samba wrote:
> 31.01.2023 08:55, Matt Savin via samba ?????:
> > In group policies use DNS aliases, then you'll need to change only
> > DNS
> > entries for these aliases to point to a new host(s).
>
> I'd say don't use simple dns aliases (cnames) in a DC, but use SPNs
> instead
> (see samba-tool
2023 Jan 31
1
Upgrading from Samba 4.8.2 to 4.15.5
31.01.2023 18:33, Mark Foley via samba wrote:
> 1.01.2023 10:13, Michael Tokarev wrote:
>> I'd say don't use simple dns aliases (cnames) in a DC, but use SPNs instead
>
> In an AD Domain I mean, not in a DC.
> This bit is confusing. The DNS runs on the DC, so what do you mean "not in a DC"?
I wanted to write "don't use simple DNS aliases in an
2015 Mar 12
5
bug in samba 4.1.17 ? changed CNAME record to other host
Hai,
?
Im testing out with some dns things..
And i think i have seen more people about this..
?
Debian 7 ( wheezy )?samba 4.1.17 debian backports.
only 1 DC, no member, just 1 DC.
?
I have added multiple DNS records and zones with the windows tool.
sofare good, works ok...
?
in one of my zones changed the CNAME of a record.
?
for example.
?
websitename1.domain.tld?CNAME to
2017 Dec 14
5
[Curiosity] 'netbios aliases' works in AD mode?
Ahem no one reply me.
A little fast-rewind: i need to have some 'aliases' to my servers (DM);
seems i need to add in smb.conf:
netbios aliases = FILESV
but also add a 'SPN'; trying to look around for an examples, lead me to
''nothing'', or to examples that seems to me unrelated.
Supposing the domain is 'ad.fvg.lnf.it' and the FQDN of the real host
is
2013 Feb 25
4
mixing MX and CNAME
Hi,
Has any one had problems with mail clients were your DNS is like this;
doman.com MX 50 mail.domain.com
domain.com MX 100 mail2.domain.com
domain.com CNAME www.domain.com
-aurf
2013 Jan 04
2
Samba4 Internal DNS CNAME entries
I am currently in the progress of testing the replacement of a Windows
2003 DC with a Samba4-based one.
In the DNS of old Windows DC we had CNAME entries to alias
www.domain.com to serverX.domain.com and ftp.domain.com to
serverY.domain.com. This is working and can be tested successfully
with dig
The CNAME entries were correctly replicated across to the internal DNS
server on the new Samba4 DC
2017 Dec 19
1
[Curiosity] 'netbios aliases' works in AD mode?
Mandi! Rowland Penny via samba
In chel di` si favelave...
> OK, NT4-style domains use netbios to find computers.
> AD domains use dns
Ok, this is clear.
> So, my advice would be to use CNAME records in AD.
> What Andrew said was correct, but netbios is on the way out, it relies
> on SMB1 and the latest Win10 has this turned off by default.
Ok, trying to sumarize: if i
2007 Oct 25
3
DNS CNAME question
Not sure if this is the best place to ask this question (and if so, please
point me to a better listserv), but is there anything "wrong" RFC or best
practice wise with pointing a CNAME record to a DNS server?
(I'm using EveryDNS.net, and I'd like to make my CNAME records ns1->
4.myDomain.com correspond to ns1->ns4.EveryDNS.net.)
-------------- next part --------------
An
2013 Nov 19
2
* CNAME loop
Hi,
I'm testing:
$ sudo nsd-control status
version: 4.0.1
verbosity: 2
I found a loop problem with this record:
* IN CNAME none
("none" means no matching record in zone and therefore match * again)
Queries that use "* CNAME" will result in a loop. The response will use TCP
and will be limited to 65k bytes
$ dig @127.0.0.1 sdfgsfg.test.com
;; Truncated,
2020 Aug 27
1
Win10 and NT mode: netlogon script seems does not run anymore.
On 27/08/2020 08:49, L.P.H. van Belle via samba wrote:
> https://support.microsoft.com/en-us/help/3181029/smb-file-server-share-access-is-unsuccessful-through-dns-cname-alias
> @Rowland have a good look at this one. This one is hitting the list.. (i have seen this problem also).
I think everyone knows my views on NT4-style domains, they were a good
idea at the time, but that time is most
2009 Mar 11
2
chown failure on a samba share
Is this working as designed or a samba bug?
I am trying to chown ownership of a file in a samba share and it
results in an error.
cifstest6:~ # smbclient //cifstest8/smb8 -U root
Enter root's password:
Domain=[CIFSTEST8] OS=[Unix] Server=[Samba 3.4.0-GIT-e6a5f11-devel]
smb: \> chown 65534 65534 file2
NT_STATUS_ACCESS_DENIED chown file \file2 uid=65534, gid=65534
The share is thus
2020 May 11
2
Unable to access shares by server alias
Hai,
Verify dig -x $(hostname -i)
Then dig A $(hostname -f)
As long as these match any CNAME should work.
Greetz,
Louis
> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces at lists.samba.org] Namens
> Marco Gaiarin via samba
> Verzonden: maandag 11 mei 2020 9:21
> Aan: samba at lists.samba.org
> Onderwerp: Re: [Samba] Unable to access shares by server
2020 May 22
1
Unable to access shares by server alias
On 22/05/2020 06:38, Lorenzo Milesi via samba wrote:
>> Verify dig -x $(hostname -i)
>> Then dig A $(hostname -f)
>>
>> As long as these match any CNAME should work.
> These works, but why these should match a CNAME? hostname returns the "main" host...
>
> Anyway to make a test I configured a new CNAME
>
> #?dig server.wdc.mydomain.it
> ;; ANSWER
2020 May 08
7
Unable to access shares by server alias
Hi.
We migrated a S4 workgroup to S4 AD DC, I'm trying to allow users to access the new \\fileserver with the old host name \\server. I added a CNAME record to the AD DNS zone, created alias for fileserver with
samba-tool spn add ldap/SERVER fileserver$
samba-tool spn add HOST/SERVER fileserver$
I also added
netbios aliases = server
to smb.conf but this should be useless, as
2017 Dec 18
3
[Curiosity] 'netbios aliases' works in AD mode?
Mandi! L.P.H. van Belle via samba
In chel di` si favelave...
> I dont get what your goal is, sorry.. :-/
And Rowland:
> Why do you think you need 'netbios aliases' ?
Simply: i was (ab)used to have, in my NT domain, some aliases for my
servers, so i can change servers (and move services) but keeping things
consistent.
Eg, all my printers are connected to
2012 May 19
2
Samba4 DNS - Adding CNAME
Hi All,
I'm using samba 4.0.0alpha21-GIT-UNKNOWN provisioned to use the internal
dns server. I'm having a bit of trouble adding a CNAME entry, or more
correctly, getting it to resolve after adding.
Prior to adding the CNAME a query returns (the relevant record);
Name=centos, Records=1, Children=0
A: 192.168.1.11 (flags=f0, serial=2, ttl=900)
It's more than likely me doing
2019 Oct 16
4
Failed to find cifs/fs-share@dom.corp (kvno 109) in keytab
Hi Rowland, I refer again after a week, perhaps missing an important piece
to the big picture: the error message appears ONLY when you access the
share using the netbios alias:
[Global]
workgroup = WG1
realm = DOM.CORP
netbios name = fs-a
netbios aliases = oldsamba
security = ADS
if you access the \\fs-a\sharename is ok if you access
\\oldsamba\sharename the logs report the