[Samba] Samba as an AD server problem

Roberto Greiner roberto.greiner at fundunesp.org.br
Wed Feb 7 12:48:39 UTC 2024 

On Wed, 7 Feb 2024 12:06:52 +0000
Roberto Greiner via samba <samba at lists.samba.org> wrote:

> Hi,
>
> I'm having a problem with my samba install, more specifically to use
> it as one of my AD servers.
>
> To setup the server, I used a fresh Debian 12, and followed
> https://wiki.samba.org/index.php/Joining_a_Samba_DC_to_an_Existing_Active_Directory,
> using BIND9_DLZ as the DNS backend.
>
> I did manage to make everything work and the tests indicated in the
> page itself work fine. But, to make sure everything was working, I
> made a quick serch and found that it would be interesting to test the
> setup from my windows server.
>
> First (in a windows cli), 'Repadmin /replsummary' indicated
> everything as ok.
>
> Then 'dcdiag /s:ad2' (where ad2 is the Debian/Samba server) also gave
> me an all Ok result.
>
> Finally, I ran 'dcdiag /Test:DNS /e /v', and here the Samba server
> failed.
>
> At the end of the command, it returned me the following(AD and WSUS
> are my current Windows AD's):

What are the Windows Servers ?
What is their functional level ?

Both are Windows 2008 R2 servers with the same as domain and forest functional level. I know it's ancient. I will update them soon....


> Summary of DNS test results:
>
>                                             Auth Basc Forw Del  Dyn
> RReg Ext
> _________________________________________________________________
> Domain: xxx.xxx.xxx.xxx WSUS                         PASS WARN PASS
> FAIL PASS PASS n/a ad2                          PASS FAIL n/a  n/a
> n/a  n/a  n/a AD                           PASS WARN PASS FAIL PASS
> WARN n/a
>
>          ......................... xxx.xxxxx.xxxx.xxx failed test DNS
>       Test omitted by user request: LocatorCheck
>       Test omitted by user request: Intersite
>
>
>
> PS:
> system details:
> OS Debian 12
> 1 GB RAM
> 9 GB Disk
> Xen-Citrix virtualization
> samba version: 2:4.17.12+dfsg-0+deb12u1 (installed via packet manager)

If you use Samba from backports, you will get 4.19.4

To be honest, providing everything else is working (replication, dns,
etc), I wouldn't worry about it.


This is the most critical for me. I just wanted to be sure, because I intend to use the samba server to deactivate/remove one of the windows server.

Thanks,

Roberto Greiner


--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list