[Samba] Was not found in the schema 'msDS-SupportedEncryptionTypes'
Rowland penny
rpenny at samba.org
Tue Dec 29 15:25:32 UTC 2015
On 29/12/15 14:56, Carlos A. P. Cunha wrote:
> Good afternoon!
> Had a samba 4 with a Windows 2003 network that is not over, I went up
> to the level of my domain / forest
>
> Forest level function: (Windows) 2008 R2
> Domain function level: (Windows) 2008 R2
> Lowest function level of the DC (Windows) 2008 R2
>
> But it seems that Samba is not with all attributes of a Windows 2008.
> Even try to join another Samba error appears
>
> ERROR (ldb): uncaught exception - LDAP error 16 LDAP_NO_SUCH ATTRIBUTE
> - <0000200 A: objectclass attrs: attribute
> "msDS-SupportedEncryptionTypes' on entry 'CN = DC-LINUX-09, OU =
> Domain Controllers, DC = mydomain' was not found in the schema> <!>
>
> Any idea ?
>
>
There appears to be something wrong with your setup, if you examine the
file 'MS-AD_Schema_2K8_R2_Attributes.txt' (should be on your system, in
a directory called ad-schema), you will this:
cn: ms-DS-Supported-Encryption-Types
ldapDisplayName: msDS-SupportedEncryptionTypes
attributeId: 1.2.840.113556.1.4.1963
attributeSyntax: 2.5.5.9
omSyntax: 2
isSingleValued: TRUE
schemaIdGuid: 20119867-1d04-4ab7-9371-cfc3d5df0afd
systemOnly: FALSE
searchFlags: 0
attributeSecurityGuid: 77b5b886-944a-11d1-aebd-0000f80367c1
systemFlags: FLAG_SCHEMA_BASE_OBJECT
schemaFlagsEx: FLAG_ATTR_IS_CRITICAL
And your DC objects should have this:
msDS-SupportedEncryptionTypes: 31
Was the original DC a Samba 4 DC ?
Rowland
More information about the samba
mailing list