[Samba] Migration from Windows to Samba4
Taylor, Jonn
jonnt at taylortelephone.com
Sat Oct 26 12:52:53 MDT 2013
On 10/26/2013 01:42 PM, Rob Janssen wrote:
> Taylor, Jonn wrote:
>> Run this command to update your DNS.
>>
>> samba_dnsupdate --verbose --all-names
>
> Hmmm... this command now outputs:
> ; TSIG error with server: tsig verify failure
> for every update it attempts to do (the updates look reasonable),
> ending with:
> Failed update of 21 entries
>
> This succeeded OK when I still used Bind, I tried it before.
> Could it be related to my switch to internal DNS?
Yes, looks like there is a problem with kerberos. I would go back to bind.
>>
>> Also post the output of samba-tool drs showrepl
This is good. That means that you got all the metadata out for the old DC.
>
> ldb_wrap open of secrets.ldb
> GENSEC backend 'gssapi_spnego' registered
> GENSEC backend 'gssapi_krb5' registered
> GENSEC backend 'gssapi_krb5_sasl' registered
> GENSEC backend 'sasl-DIGEST-MD5' registered
> GENSEC backend 'schannel' registered
> GENSEC backend 'spnego' registered
> GENSEC backend 'ntlmssp' registered
> GENSEC backend 'krb5' registered
> GENSEC backend 'fake_gssapi_krb5' registered
> Using binding ncacn_ip_tcp:sambadc.example.nl[,seal]
> Example\SAMBADC
> DSA Options: 0x00000001
> DSA object GUID: 01149669-4d67-4c96-bf5f-8948505dd411
> DSA invocationId: c1a6323b-c591-4e1c-bb0a-030e3158c9e2
>
> ==== INBOUND NEIGHBORS ====
>
> ==== OUTBOUND NEIGHBORS ====
>
> ==== KCC CONNECTION OBJECTS ====
>
> Rob
More information about the samba
mailing list