Startup errors when DNS/[primary-dc].[domain] on [primary-dc]$ spn exists
Michael Croes
mycroes at gmail.com
Mon Mar 25 13:16:48 MDT 2013
Some additional information, I guess this might ring bells or explain more:
root at adc:~# /usr/local/samba/sbin/samba -i -M single -d 2
lpcfg_load: refreshing parameters from /usr/local/samba/etc/smb.conf
samba version 4.0.4 started.
Copyright Andrew Tridgell and the Samba Team 1992-2012
samba: using 'single' process model
dreplsrv_partition[CN=Configuration,DC=mijlweg,DC=visser,DC=eu] loaded
dreplsrv_partition[CN=Schema,CN=Configuration,DC=mijlweg,DC=visser,DC=eu]
loaded
dreplsrv_partition[DC=mijlweg,DC=visser,DC=eu] loaded
dreplsrv_partition[DC=DomainDnsZones,DC=mijlweg,DC=visser,DC=eu] loaded
dreplsrv_partition[DC=ForestDnsZones,DC=mijlweg,DC=visser,DC=eu] loaded
kccsrv_partition[DC=mijlweg,DC=visser,DC=eu] loaded
kccsrv_partition[CN=Configuration,DC=mijlweg,DC=visser,DC=eu] loaded
kccsrv_partition[CN=Schema,CN=Configuration,DC=mijlweg,DC=visser,DC=eu]
loaded
kccsrv_partition[DC=DomainDnsZones,DC=mijlweg,DC=visser,DC=eu] loaded
kccsrv_partition[DC=ForestDnsZones,DC=mijlweg,DC=visser,DC=eu] loaded
Could not find DNS/adc.mijlweg.visser.eu principal in secrets database:
NT_STATUS_CANT_ACCESS_DOMAIN_INFO: Could not find entry to match filter:
'(&(|(realm=MIJLWEG.VISSER.EU)(flatname=VISSER))(servicePrincipalName=DNS/
adc.mijlweg.visser.eu))' base: 'cn=Principals': No such object: (null)
task_server_terminate: [Failed to obtain server credentials for DNS,
despite finding it in the samdb! NT_STATUS_CANT_ACCESS_DOMAIN_INFO
]
/usr/local/samba/sbin/smbd: smbd version 4.0.4 started.
/usr/local/samba/sbin/smbd: Copyright Andrew Tridgell and the Samba Team
1992-2012
/usr/local/samba/sbin/smbd: standard input is not a socket, assuming -D
option
samba_terminate: Failed to obtain server credentials for DNS, despite
finding it in the samdb! NT_STATUS_CANT_ACCESS_DOMAIN_INFO
root at adc:~#
So it seems there's no cn=Principals, should it be there?
Regards,
Michael
2013/3/25 Michael Croes <mycroes at gmail.com>
> Hi all,
>
> Friday I updated my Samba 4 DC to Samba 4.0.4. I also went from Bind DLZ
> to internal DNS at the same time. Now whenever I start Samba I will get the
> following log entries and a useless (bunch of) samba process(es):
>
> [2013/03/25 12:38:52, 0] ../source4/smbd/server.c:475(binary_smbd_main)
> samba: using 'standard' process model
> [2013/03/25 12:38:52, 0]
> ../source4/smbd/service_task.c:35(task_server_terminate)
> task_server_terminate: [Failed to obtain server credentials for DNS,
> despite finding it in the samdb! NT_STATUS_CANT_ACCESS_DOMAIN_INFO
> ]
> [2013/03/25 12:38:52, 0] ../source4/smbd/server.c:210(samba_terminate)
> samba_terminate: Failed to obtain server credentials for DNS, despite
> finding it in the samdb! NT_STATUS_CANT_ACCESS_DOMAIN_INFO
>
> Now if I do samba-tool spn delete DNS/[primary-dc].[domain] [primary-dc]$
> it will start up, and immediately the spn entry is there again as well. At
> this point, a restart will result in a non-working state again, until I
> delete the spn and restart again.
>
> I did a ldap-search for DNS/*, and the only one that shows up is the SPN
> for the primary DC (which is my only DC as well right now).
>
> Also, I don't have any dns-[host] accounts anymore, but I guess they're
> not used in conjunction with the internal DNS server, but I couldn't find
> any details on this.
>
> Please let me know if I should provide more information or if I should
> apply any patches in order to get help.
> Regards,
>
> Michael
>
More information about the samba-technical
mailing list