[Samba] samba-check-db-script python failure

Bob of Donelson Trophy bob at donelsontrophy.net
Fri Apr 24 06:04:11 MDT 2015 

 

Oops. Miss understood. 

Without time, I will not cut-n-paste the output. Ran them correctly and
they answer correctly with proper hostname, ip address and domainname. 

What about the block of code? What am I to do with that? 

---

-------------------------

Bob Wooden of Donelson Trophy

615.885.2846 (main)
www.donelsontrophy.com [1]

"Everyone deserves an award!!"

On 2015-04-24 06:29, L.P.H. van Belle wrote: 

> Hai Bob. 
> 
> SETDNSDOMAIN='hostname -d' 
> needs to be: 
> SETDNSDOMAIN=`hostname -d`
> .. so change them all .
> 
> SETDNSDOMAIN=`hostname -d`
> SETHOSTNAME=`hostname -s`
> SERVER_IP_ADDRESS=`hostname -i`
> 
> and you can ignore :
> 
>> [....] Stopping domain name service...: bind9rndc: connect failed: 127.0.0.1#953: connection refused . ok [ ok ] Starting domain name service...: bind9.
> 
> in the next script version you wont see these messages. 
> as long as you see..
> 
>> [ ok ] Starting domain name service...: bind9.
> 
> its ok. 
> 
> Greetz, 
> 
> Louis
> -----Oorspronkelijk bericht----- Van: bob at donelsontrophy.net [mailto:samba-bounces at lists.samba.org] Namens Bob of Donelson Trophy Verzonden: vrijdag 24 april 2015 13:17 Aan: samba at lists.samba.org Onderwerp: Re: [Samba] samba-check-db-script python failure from DC1: root at dc01:~# cat /etc/hosts 127.0.0.1 localhost localhost.localdomain 192.168.16.51 dc01.dtsh***m.dt dc01 root at dc01:~# cat /etc/resolv.conf search dtsh***m.dt nameserver 192.168.16.52 nameserver 127.0.0.1 root at dc01:~# kinit Administrator Password for Administrator at DTSH***M.DT: Warning: Your password will expire in 179 days on Tue Oct 20 20:38:48 2015 root at dc01:~# SETDNSDOMAIN='hostname -d' root at dc01:~# SETHOSTNAME='hostname -s' root at dc01:~# SERVER_IP_ADDRESS='hostname -i' root at dc01:~# echo "Test domainname: $SETDNSDOMAIN" Test domainname: hostname -d root at dc01:~# echo "Test Hostname: $SETHOSTNAME" Test Hostname: hostname -s root at dc01:~# echo "Test Ip_address: $SERVER_IP_ADDRESS" Test Ip_address: hostname -i root@
 dc01:~#
dig A $SETHOSTNAME.$SETDNSDOMAIN @localhost Invalid option: -s.hostname Usage: dig [@global-server] [domain] [q-type] [q-class] {q-opt} {global-d-opt} host [@local-server] {local-d-opt} [ host [@local-server] {local-d-opt} [...]] from DC2: root at dc02:~# cat /etc/hosts 127.0.0.1 localhost localhost.localdomain 192.168.16.52 dc02.dtsh***m.dt dc02 root at dc02:~# cat /etc/resolv.conf search dtsh***m.dt nameserver 192.168.16.52 root at dc02:~# cat /etc/resolv.conf search dtsh***m.dt nameserver 192.168.16.51 nameserver 127.0.0.1 root at dc02:~# kinit Administrator Password for Administrator at DTSH***M.DT: Warning: Your password will expire in 179 days on Tue Oct 20 07:22:08 2015 root at dc02:~# SETDNSDOMAIN='hostname -d' root at dc02:~# SETHOSTNAME='hostname -s' root at dc02:~# SERVER_IP_ADDRESS='hostname -i' root at dc02:~# echo "Test domainname: $SETDNSDOMAIN" Test domainname: hostname -d root at dc02:~# echo "Test Hostname: $SETHOSTNAME" Test Hostname: hostname -s root at dc02:~# echo "Test Ip_address:
$SERVER_IP_ADDRESS" Test Ip_address: hostname -i root at dc02:~# dig A $SETHOSTNAME.$SETDNSDOMAIN at localhost Invalid option: -s.hostname Usage: dig [@global-server] [domain] [q-type] [q-class] {q-opt} {global-d-opt} host [@local-server] {local-d-opt} [ host [@local-server] {local-d-opt} [...]] Use "dig -h" (or "dig -h | more") for complete list of options I am not clear as to what you wanted me to do with the bottom (what appeared to be a script, maybe?) section? And then I found "Invalid option: -s.hostname" interesting. In addition to the information you wanted. I reran the sernet install script on DC2 (fresh install) and discovered this: Setting up krb5-user (1.10.1+dfsg-5+deb7u3) ... ==========Enable bind gssapi and bind9_DLZ =============================== [....] Stopping domain name service...: bind9rndc: connect failed: 127.0.0.1#953: connection refused . ok [ ok ] Starting domain name service...: bind9. ==========Disable Printing =============================== This is ou
 tput
near the end of the install. Notice the "bindrndc: connect failed . . ." Might this have anything to do with my machine speed issues? Could this be what is breaking my DNS? --- ------------------------- Bob Wooden of Donelson Trophy 615.885.2846 (main) www.donelsontrophy.com [1] [1 [1]] "Everyone deserves an award!!" On 2015-04-24 01:43, L.P.H. van Belle wrote: I upped 1.0.4 of the script.. I added checks if no DC's are found, error message and exits script, so no python errors anymore, if i did it right. ;-) on both DC's do the following. and whats the output of : cat /etc/hosts cat /etc/resolv.conf and kinit Administrator SETDNSDOMAIN=`hostname -d` SETHOSTNAME=`hostname -s` SERVER_IP_ADRESS=`hostname -i` echo "Test domainname: $SETDNSDOMAIN" echo "Test Hostname : $SETHOSTNAME" echo "Test Ip_address: $SERVER_IP_ADRESS" dig A $SETHOSTNAME.$SETDNSDOMAIN @localhost if [ -z "`host -t SRV _ldap._tcp.${SETDNSDOMAIN}. | grep 'not found'`" ]; then echo "testing of : host -t SRV
_ldap._tcp.${SETDNSDOMAIN}. : ok" else echo "testing of : host -t SRV _ldap._tcp.${SETDNSDOMAIN}. : FAILED" fi if [ -z "`host -t SRV _kerberos._udp.${SETDNSDOMAIN}. | grep "not found" `" ]; then echo "testing of : host -t SRV _kerberos._udp.${SETDNSDOMAIN}. : ok" else echo "testing of : host -t SRV _kerberos._udp.${SETDNSDOMAIN}. : FAILED" fi if [ -z "`host -t A ${SETHOSTNAME}.${SETDNSDOMAIN}. | grep "not found" `" ]; then echo "testing of : host -t A ${SETHOSTNAME}.${SETDNSDOMAIN}. : ok" else echo "testing of : host -t A ${SETHOSTNAME}.${SETDNSDOMAIN}. : FAILED" echo "trying to fix it now: " samba-tool dns add ${SETHOSTNAME}.${SETDNSDOMAIN} ${SETDNSDOMAIN} ${SETHOSTNAME} A ${SERVER_IP_ADRESS} fi Greetz, Louis -----Oorspronkelijk bericht----- Van: bob at donelsontrophy.net [mailto:samba-bounces at lists.samba.org] Namens Bob of Donelson Trophy Verzonden: donderdag 23 april 2015 19:42 Aan: samba at lists.samba.org Onderwerp: Re: [Samba] samba-check-db-script python failure Hum-m-m! nsl
 ookup on
DC1 can "find" DC2 and my member server and not itself. nslookup on DC2 can "find" DC1 and my member server but not itself. And (just because) nslookup on the member server can "find" DC1 and itself but not DC2. And I have a meeting in a few and I will not get back to this until tonight. Suggestions? --- ------------------------- Bob Wooden of Donelson Trophy 615.885.2846 (main) www.donelsontrophy.com [1] [1 [1]] [1 [1]] "Everyone deserves an award!!" On 2015-04-23 10:26, Rowland Penny wrote: On 23/04/15 16:22, Bob of Donelson Trophy wrote: I went and got the newest (upped recently) script. No love. I removed the email address line to get more command line output. root at dc01:~# ./samba-check-db-repl.sh Runnin g with with console output Running : /usr/bin/samba-tool ldapcmp --filter='whenChanged' ldap://dc01 ldap://dc02.dtsh***m.dt. Please wait.. this can take a while.. Failed to bind - LDAP error 49 LDAP_INVALID_CREDENTIALS - <SASL:[GSS-SPNEGO]: NT_STATUS_LOGON_FAILURE> <> Fai
 led to
connect to 'ldap://dc02.dtsh***m.dt.' with backend 'ldap': (null) ERROR(ldb): uncaught exception - None File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line 175, in _run return self.run(*args, **kwargs) File "/usr/lib/python2.7/dist-packages/samba/netcmd/ldapcmp.py", line 968, in run outf=self.outf, errf=self.errf) File "/usr/lib/python2.7/dist-packages/samba/netcmd/ldapcmp.py", line 64, in __init__ options=ldb_options) File "/usr/lib/python2.7/dist-packages/samba/__init__.py", line 114, in __init__ self.connect(url , flags, options) .. Next check.. Running : samba-tool drs showrepl ./samba-check-db-repl.sh: line 284: [: 0: unary operator expected ./samba-check-db-repl.sh: line 287: [: 0: un ary operator expected Thoughts? --- ------------------------- Bob Wooden of Donelson Trophy 615.885.2846 (main) www.donelsontrophy.com [1] [1 [1]] [1 [1]] [1 [1]] "Everyone deserves an award!!" On 2015-04-23 09:05, L.P.H. van Belle wrote: Hai Bob, ah.. LDAP_INVALID_CREDE
 NTIALS,
this is not a python error, but password error.. ;-) i upped a new version of samba-check-db-repl.sh ( direct link : https://secure.bazuin.nl/scripts/samba-check-db-repl.sh [2] [2 [2]] [2 [2]] [3 [2]]) small change in the install of the mail tools section. A bit info for this version. ## Version : 1.0.3 ## release d.d. : 22-04-2015 ## moved mailx part within checks if an e-mail adres is used. ## Samba database checker. ( DB check up to 10 samba DC's ) ## This script wil check for error in the samba databases with samba-tool ## NOTICE !! This script does only work with samba DC's ## A samba DC + Windows Dc wont work and is not tested, if you get that to work, ## please share the code ;-) The script wil find the DC with FSM O roles, and matches all other dc's with the one containing the FSMO roles. tested with samba 4.1.17 and 4.2.1 ( debian wheezy ) Gr. Louis -----Oorspronkelijk bericht----- Van: bob at donelsontrophy.net [mailto:samba-bounces at lists.samba.org] Namens Bob of Donel
 son
Trophy Verzonden: donderdag 23 april 2015 15:48 Aan: SAMBA MailList Onderwerp: [Samba] samba-check-db-script python failure When I run ./samba-check-db-repl.sh script I am getting the following: root at dc01:~# ./samba-check-db-repl.sh Failed to bind - LDAP error 49 LDAP_INVALID_CREDENTIALS - <SASL:[GSS-SPNEGO]: NT_STATUS_LOGON_FAILURE> <> Failed to connect to 'ldap://dc02.dtsh**m.dt.' with backend 'ldap': (null) ERROR(ldb): uncaught exception - None File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line 175, in _run return self.run(*args, **kwargs) File "/usr/lib/python2.7/dist-packages/samba/netcmd/ldapcmp.py", line 968, in run outf=self.outf, errf=self.errf) File "/usr/lib/python2.7/dist-packages/samba/netcmd/ldapcmp.py", line 64, in __init__ options=ldb_options) File "/usr/lib/python2.7/dist-packages/samba/__init__.py", line 114, in _ _ init__ self.connect(url, flags, options) ./samba-check-db-repl.sh: line 257: [: 0: unary operator expected What would the "u
 nary
operator expected" issue be? -- ------------------------- Bob Wooden of Donelson Trophy 615.885.2846 (main) www.donelsontrophy.com [1] [1 [1]] [1 [1]] [1 [1]] [1 [1]] "Everyone deserves an award!!" Links: ------ [1 [1]] http://www.donelsontrophy.com [1] [1 [1]] [1 [1]] [1 [1]] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba [3] [3 [3]] [3 [3]] [2 [3]] Links: ------ [1] http://www.donelsontrophy.com [1] [1 [1]] [1 [1]] [2] https://lists.samba.org/mailman/options/samba [3] [3 [3]] [3 [3]] [3 [3]] https://secure.bazuin.nl/scripts/samba-check-db-repl.sh [2] [2 [2]] [2 [2]] DNS problem ?? Rowland Links: ------ [1 [1]] http://www.donelsontrophy.com [1] [1 ] [2 [2]] https://secure.bazuin.nl/scripts/samba-check-db-repl.sh [2] [2 [2]] [3] https://lists.samba.org/mailman/options/samba [3] [3 [3]] -- To unsubscribe from this list go to the following URL and read the instructions:
https://lists.samba.org/mailman/options/samba [3] [3 [3]] Links: ------ [1] http://www.donelsontrophy.com [1] [2] https://secure.bazuin.nl/scripts/samba-check-db-repl.sh [2] [3] https://lists.samba.org/mailman/options/samba [3] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba [3]
 

Links:
------
[1] http://www.donelsontrophy.com
[2] https://secure.bazuin.nl/scripts/samba-check-db-repl.sh
[3] https://lists.samba.org/mailman/options/samba

More information about the samba mailing list