machine password change on memberserver on RODC site
Denis Cardon
dcardon at tranquil.it
Fri Mar 10 21:17:38 UTC 2017
Hi everyone,
While testing RODC (4.7 git-head with Garming recent patches), I came
thought an issue with machine password secret update on memberserver
quite similar to https://bugzilla.samba.org/show_bug.cgi?id=12262 .
I have ran into that bug previously on RWDC sites, but patches have made
their way in 4.6, so I am wondering if this is specific to RODC sites.
# samba -V
Version 4.6.0
# net ads join -U dcardon-adm --server=dc-nantes
Enter dcardon-adm's password:
Using short domain name -- TRANQUILIT
Joined 'TEST-SRVFIC' to dns domain 'tranquilit.lan'
# wbinfo -t
checking the trust secret for domain TRANQUILIT via RPC calls succeeded
# net ads testjoin
Join is OK
# killall -9 smbd ; killall -9 winbindd
# winbindd ; smbd
# net ads testjoin
Join is OK
# wbinfo -t
checking the trust secret for domain TRANQUILIT via RPC calls succeeded
# wbinfo -c
changing the trust secret for domain TRANQUILIT via RPC calls failed
failed to call wbcChangeTrustCredentials: WBC_ERR_DOMAIN_NOT_FOUND
Could not change secret
# net ads testjoin
kerberos_kinit_password TEST-SRVFIC$@TRANQUILIT.LAN failed:
Preauthentication failed
kerberos_kinit_password TEST-SRVFIC$@TRANQUILIT.LAN failed:
Preauthentication failed
Join to domain is not valid: Logon failure
Cheers,
Denis
--
Denis Cardon
Tranquil IT Systems
Les Espaces Jules Verne, bâtiment A
12 avenue Jules Verne
44230 Saint SĂ©bastien sur Loire
tel : +33 (0) 2.40.97.57.55
http://www.tranquil-it-systems.fr
More information about the samba-technical
mailing list