A successful Samba 4 deployment

Mark Rutherford mark at lowcountrybilling.com
Thu Nov 11 03:27:00 MST 2010


Hi all,

No dice on ntp yet.
The version in Debian Lenny does not appear to be compiled with 
--enable-ntp-signd so your
going to have to compile it yourself.
I was looking at the patch supplied to the NTP developers for clues and 
found a lot:
https://support.ntp.org/bugs/show_bug.cgi?id=1028
Putting ntpd in debug I never appear to get into send_via_ntp_signd() so 
I fear that I will be sitting here
with wireshark, gdb and a Windows box unless anyone has a clue how my 
clients could be misconfigured?

Is...
w32tm /resync /rediscover
the proper way to get a windows client to query the domain controller 
for time?
When I do this I can see the ntp server getting the request, so it does 
something.
Thanks all.


On 11/9/2010 2:45 PM, Andrew Bartlett wrote:
> On Tue, 2010-11-09 at 11:00 -0500, Mark Rutherford wrote:
>> We have been running for almost 2 weeks now without any major problems.
>> All the problems I have encountered have been minor and fixed fairly
>> quickly.
>> The second issue has been time on clients.
>> I have ntpd running on the DC but windows clients just throw event logs
>> about not being able to get time from the domain controller for the
>> last 8 times, etc etc.
>> I have read some places that Windows uses sntp instead of ntp so I am
>> not really sure about what I should be doing.
> They are essentially the same protocol for PC-level clients, and they
> use real NTP now anyway.
>
> You need to install a current version of the ntp server, and have it
> compiled with the options to know to talk to samba.  (compile ntp with
> the --enable-ntp-signd configure option or use current debian or
> ubuntu).
>
> in the ntp.conf you need (from memory)
>
> restrict mynet mssntp
> signdsocketdir /data/samba/samba4/prefix/var/run/ntp_signd/
>
> Andrew Bartlett



More information about the samba-technical mailing list