[SOLVED SORT OF] Re: adding principals in S4 to controller account
Andrew Bartlett
abartlet at samba.org
Fri Aug 19 17:13:11 MDT 2011
On Fri, 2011-08-19 at 16:18 -0600, Trever L. Adams wrote:
> On 08/19/2011 10:28 AM, Ted Salmon wrote:
> > Just Wondering, and I could be completely off here as krb has been
> > socking it to me, but have you tried to add/list SPN's via samba-tool
> > spn list <username>?
>
> No, but I realized after a bit of much needed downtime that the fact I
> have an nfs/FILESERVER ticket granted that S4 is not the problem. After
> digging around I found out that I need reverse DNS working as
> rpc.svcgssd on the server is not passed a principal name with the
> principal, but constructs it from reverse DNS.
>
> Unfortunately this is going to be a bit of a pain since net ads dns
> register (Samba 3.5.8) dos NOT work with S4. I am going to have to
> figure out a way of doing this.
The DNS register code got fixed up for some use cases in the 3.6 series,
and I think back-ported to the more recent 3.5 releases. 'net' is now
built in Samba 4.0 alphas also, if you wish to use the current code.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
More information about the samba-technical
mailing list