Cannot join as secondary DC - samba 4.2.2 - <bug?>
Alexander Bokovoy
ab at samba.org
Sun Jun 7 11:15:25 MDT 2015
On Sun, Jun 07, 2015 at 07:32:11AM -0700, bogdan_bartos wrote:
> The --server=fileserver.fileserver.specified.ca did the trick. I have the
> firewall open on both boxes for the samba services. It's firewalld:
>
> [root at fileserver sbin]# cat /etc/firewalld/services/samba.xml
> <?xml version="1.0" encoding="utf-8"?>
> <service>
> <short>Samba</short>
> <description>This option allows you to access and participate in Windows
> file and printer sharing networks. You need the samba package installed for
> this option to be useful.</description>
> <port protocol="tcp" port="53"/>
> <port protocol="udp" port="53"/>
> <port protocol="tcp" port="88"/>
> <port protocol="udp" port="88"/>
> <port protocol="tcp" port="135"/>
> <port protocol="udp" port="137"/>
> <port protocol="udp" port="138"/>
> <port protocol="tcp" port="139"/>
> <port protocol="tcp" port="389"/>
You need to open 389/UDP too as this is the CLDAP ping which is used for
discovering domain controller capabilities in Active Directory.
--
/ Alexander Bokovoy
More information about the samba-technical
mailing list