[Samba] Setup a Samba AD DC as an additional DC

Barry D. Adkins Barry at daram.com
Sat Dec 1 13:17:37 UTC 2018 

Same problem.  Can't join as AD DC.  Secrets file missing the Machine Secret:
If the problem is MS Exchange, then I'll have to hold off until I can dump Exchange and get Kopano or something else.

Still getting this:
ldb_wrap open of secrets.ldb
Could not find machine account in secrets database: Failed to fetch machine account 
password for DARAM from both secrets.ldb (Could not find entry to match 
filter: '(&(flatname=DARAM)(objectclass=primaryDomain))' base: 'cn=Primary Domains':
No such object: dsdb_search at ../source4/dsdb/common/util.c:4705) and from 
/var/lib/samba/private/secrets.tdb: NT_STATUS_CANT_ACCESS_DOMAIN_INFO


Replicating DC=ForestDnsZones,DC=daram,DC=com
Partition[DC=ForestDnsZones,DC=daram,DC=com] objects[211/211] linked_values[0/0]
Exop on[CN=RID Manager$,CN=System,DC=daram,DC=com] objects[3] linked_values[0]
Committing SAM database
Adding 1 remote DNS records for HOUDCU01.daram.com
Adding DNS A record HOUDCU01.daram.com for IPv4 IP: 131.192.176.40
Adding DNS CNAME record 96198a82-8847-4a60-ae00-bfbbb0e78bd4._msdcs.daram.com for HOUDCU01.daram.com
Join failed - cleaning up
Deleted CN=RID Set,CN=HOUDCU01,OU=Domain Controllers,DC=daram,DC=com
Deleted CN=HOUDCU01,OU=Domain Controllers,DC=daram,DC=com
Deleted CN=NTDS Settings,CN=HOUDCU01,CN=Servers,CN=Houston,CN=Sites,CN=Configuration,DC=daram,DC=com
Deleted CN=HOUDCU01,CN=Servers,CN=Houston,CN=Sites,CN=Configuration,DC=daram,DC=com
Deleted DC=HOUDCU01,DC=daram.com,CN=MicrosoftDNS,DC=DomainDnsZones,DC=daram,DC=com
ERROR(runtime): uncaught exception - (9601, 'WERR_DNS_ERROR_ZONE_DOES_NOT_EXIST')
  File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line 177, in _run
    return self.run(*args, **kwargs)
  File "/usr/lib/python2.7/dist-packages/samba/netcmd/domain.py", line 716, in run
    backend_store=backend_store)
  File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1500, in join_DC
    ctx.do_join()
  File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1405, in do_join
    ctx.join_add_dns_records()
  File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1164, in join_add_dns_records
    None)


>We know about exchange might be a problem, the others i dont know..
>Check the windows schema levels. 
>https://wiki.samba.org/index.php/AD_Schema_Version_Support 

>You could try a clean setup as shown by my howto. 

>Before you install setup ip and hostname in the windows DNS for the linux server. 
>Make sure you use a name thats never used before, just to be sure of no side effects. 

>Then follow this to the letter. ( so use bind9_dlz ) 

>https://github.com/thctlo/samba4/blob/master/full-howto-Ubuntu18.04-samba-AD_DC.txt
>Line 31, use the windows DC's ip's
>Line 47, use the same time server as the windows DC's. 

>Until line 259, the provisioning line, change that to join. 
>And proceed with the steps. 


> -----Oorspronkelijk bericht-----
> Onderwerp: [Samba] Setup a Samba AD DC as an additional DC
> 
> > 2008 Member - MS Exchange 2010
> 
> >BOING!!!         ^^^^^^^^^^^
> 
> >From my knowledge, you cannot use exchange with a Samba DC.
> 

-Barry Adkins

More information about the samba mailing list