similar to: Dual controllers with bind DLZ - DNS change propagation

Displaying 20 results from an estimated 7000 matches similar to: "Dual controllers with bind DLZ - DNS change propagation"

2020 Nov 18
3
dnsupdate failed with TKEY is unaceptable
On 18/11/2020 19:27, Rommel Rodriguez Toirac wrote: > > ?It is /etc/named.conf and /etc/samba/smb.conf > > > # cat /etc/named.conf > > > ??tkey-gssapi-keytab "/usr/local/samba/private/dns.keytab"; > > > include "/usr/local/samba/bind-dns/named.conf"; > OK, does the /usr/local/samba/bind-dns directory exist ? if it does, is the
2020 Nov 18
0
dnsupdate failed with TKEY is unaceptable
El 18 de noviembre de 2020 15:16:09 GMT-05:00, Rowland penny via samba <samba at lists.samba.org> escribi?: >On 18/11/2020 19:27, Rommel Rodriguez Toirac wrote: >> >> ?It is /etc/named.conf and /etc/samba/smb.conf >> >> >> # cat /etc/named.conf >> >> >> ??tkey-gssapi-keytab "/usr/local/samba/private/dns.keytab"; >> >>
2020 Oct 21
3
Azure AD Connect and replication issues
hello our AD domain is hosted by two samba AD domain controllers version 4.12.6 - replication between controllers is fine, no problems. - no schema errors. - no database errors, all fine. - no CPU utilizations - wthout noticeable bandwidth utilization Recently we have deployed Azure AD connector on dedicated windows system (system is domain member server). since this deployment we are observing
2020 Oct 21
2
Azure AD Connect and replication issues
Hi Michal, Seems we are doing similar things at the moment: getting samba to work with azure AD. We also see the high CPU usage on the DC that the Azure AD Connect server connected to. Between 70 - 100 percent in our case. We are not seeing any replication issues after azure AD Connect, and I have a script that automatically checks replication every few minutes. I was the one reporting the
2020 Oct 22
2
Azure AD Connect and replication issues
just small update: - idfix tool (Directory Synchronization Error Remediation Tool / https://github.com/microsoft/idfix) shows just small issues like empty/missing displayName attrib in some of objects which I have corrected and no more issues present at all. - no errors from AAD connect event viewer: final log message is "Scheduler::SchedulerThreadMain : Completed configured scheduler
2019 May 05
1
Issues with bind9 dlz
Hi Rowland, The samba-tool dns zonelist 127.0.0.1 -U Administrator%xxxxxxxxxx | grep 'pszZoneName', gives Using binding ncacn_ip_tcp:127.0.0.1[,sign] Mapped to DCERPC endpoint 135 added interface eth0 ip=192.168.117.10 bcast=192.168.14.255 netmask=255.255.255.0 added interface eth0 ip=192.168.117.10 bcast=192.168.14.255 netmask=255.255.255.0 Mapped to DCERPC endpoint 1024 added interface
2020 Oct 06
0
Viewing changelog for packages to be updated
> On Wed, Aug 26, 2020 at 11:18 PM Simon Matter via CentOS > <centos at centos.org> wrote: >> >> > On Wed, Aug 26, 2020 at 2:54 PM Kenneth Porter <shiva at sewingwitch.com> >> > wrote: >> >> >> >> Is there some way to see the RPM changelog entries for a prospective >> yum >> >> update? Ideally I'd like to see
2019 May 04
2
Issues with bind9 dlz
Hi Rowland, Thank you. I think the 5 zones maybe a parsing issues somewhere. Also, the realms are in capital, must have been a typo. The UFW has been disabled and selinux is in a disbaled state /etc/bind/named.conf.options has options { directory "/var/cache/bind"; // If there is a firewall between you and nameservers you want // to talk to, you may need to
2020 Aug 27
2
Viewing changelog for packages to be updated
On Wed, Aug 26, 2020 at 11:18 PM Simon Matter via CentOS <centos at centos.org> wrote: > > > On Wed, Aug 26, 2020 at 2:54 PM Kenneth Porter <shiva at sewingwitch.com> > > wrote: > >> > >> Is there some way to see the RPM changelog entries for a prospective yum > >> update? Ideally I'd like to see just the entries that are newer than the
2019 Jun 19
4
DLZ Backend DNS Hosed
Hello, I'm in trouble here with what appears to be a total meltdown of my DNS on my Domain Controllers. I only have two DCs right now and I cannot resolve anything on either of them. I am on Ubuntu 16.04 with a compiled version of Samba 4.10.4. I also have a compiled version of BIND 9.10.3-P4-Ubuntu <id:ebd72b3> # service bind9 status ? bind9.service - BIND Domain Name Server ?
2018 Jul 02
2
client @0x7f6ed800bc20 172.16.5.86#62582: update 'campus.company.intra/IN' denied
Hello, The error described in the email title happens in version 9.10 of the bind that I have installed in our main DC. In face of that, I found the samba wiki article that talks about this problem. https://wiki.samba.org/index.php/Using_BIND_DLZ_backend_with_secured_/_signed_DNS_updates I made a new installation via source with the suggested options: root at dc3:~# fakeroot ./configure
2018 Jul 02
2
client @0x7f6ed800bc20 172.16.5.86#62582: update 'campus.company.intra/IN' denied
> > Hmm, bind 9.12.x isn't supported yet. He works with "dlopen /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_11.so" without problems, at first. include "/etc/bind/rndc.key"; > controls { > inet 127.0.0.1 allow { localhost; } keys { rndc-key;}; > }; > You do not need the four lines above Ok, but if I leave it, does not have problems
2019 Aug 22
2
Erros in Samba 4 DC
Hi, I noticed some problems in my DC2 (secondary) Logs, as below: root at samba4-dc2:/var/log/samba# tail log.samba ago 22 14:55:21 samba4-dc2 samba[2812]: [2019/08/22 14:55:21.106213, 0] ../lib/util/util_runcmd.c:316(?andler) ago 22 14:55:21 samba4-dc2 samba[2812]: /usr/sbin/samba_dnsupdate: GENSEC backend 'krb5' registered ago 22 14:55:21 samba4-dc2 samba[2812]: [2019/08/22
2018 Jul 20
1
Another peculiar behaviour, this time with BIND 9 DNS with DLZ
Hi, String of peculiar behavior continues... Samba Version 4.7.5, Bind Version 9.8 No. of Samba-AD-DC Servers : 4 (dc1, dc2, dc3 & dc4). All FSMO roles are on dc1. All the while all things were perfect. Yesterday, due to some reason, the BIND Service on dc2 stopped. This resulted in none of the other domain controllers could resolve the names. On dc2, only named service was stopped but
2017 Jan 13
2
Why is S4 attempting to execute rndc when using *INTERNAL* DNS?
My AD domain (SerNET S4 4.5.3) using S4's internal DNS, and always has. So why is it now constantly logging an error of - [2017/01/13 12:53:00.152754, 0] ../lib/util/util_runcmd.c:316(samba_runcmd_io_handler) /usr/sbin/rndc: Failed to exec child - No such file or directory - after attempting to add a 2008R2 DC. I do not recall seeing this error previously [not prior to
2019 Jun 19
0
DLZ Backend DNS Hosed
Hai, For bind, please to add this for bind if you use bind_DLZ. How : systemctl edit bind9, or create the file manualy and run systemctl daemon-reload after. The edit command already does the reload. # /etc/systemd/system/bind9.service.d/override.conf [Service] ExecReload= But same for you. ;-) as the other list message today. ([Samba] Reverse DNS) Can you run this for me on the
2020 Oct 14
0
[Bug 1476] New: xtables-monitor --trace segfaults running inside a container
https://bugzilla.netfilter.org/show_bug.cgi?id=1476 Bug ID: 1476 Summary: xtables-monitor --trace segfaults running inside a container Product: bugzilla Version: other Hardware: x86_64 OS: All Status: NEW Severity: enhancement Priority: P5 Component: netfilter
2019 Aug 05
0
samba dlz. bind9 nslookup is wrong
That the script isnt running, shows that whats going wrong.. Your resolving.. And then thats also why your kerberos settings are not working. And, that is what your problem is. Show this: cat /etc/hosts cat /etc/resolv.conf hostname -f hostname -d hostname -s hostname -A hostname -I cat /etc/krb5.conf The bind setup on my Debian (10) Buster AD-DC's with Bind9_dlz About same setup as
2016 May 27
2
ISC's dhcp server, radvd and bind9 now adding samba as an AD DC
I had left my config alone for now and dhcp still writes to DOMAIN1.SUBDOMAIN.TLD. But samba has been complaining about not being able to write to bind in its zone. [2016/05/27 07:30:06.738434, 0] ../source4/dsdb/dns/dns_update.c:295(dnsupdate_nameupdate_done) ../source4/dsdb/dns/dns_update.c:295: Failed DNS update - NT_STATUS_UNSUCCESSFUL If you are right about it using kerberos I think I am
2016 May 18
2
ISC's dhcp server, radvd and bind9 now adding samba as an AD DC
So I had dhcp, radvd and bind working together nicely and now I threw in a wrench of setting up an AD DC I want to change my dhcp server setting to put client's into the new AD Domain but am a little hesitant as it is all working so nicely with DDNS I'm starting to think all I need to do is edit just my dhcpd.conf and change occurrences of DOMAIN1.SUBDOMAIN.TLD to