dns.keytab file

Rowland penny rpenny at samba.org
Mon Oct 19 12:30:12 UTC 2020

On 19/10/2020 13:07, Stefan Kania via samba-technical wrote:
> Am 19.10.20 um 03:38 schrieb Andrew Bartlett:
>> On Sat, 2020-10-17 at 09:47 +0200, Stefan Kania wrote:
>>> Hi Andrew,
>>> Am 16.10.20 um 22:37 schrieb Andrew Bartlett:
>>>> I just saw this with a customer yesterday.
>>> I see this every time I setup a new domain, I also wrote it into my
>>> Samba4 book. If it's a bug should I write bugreport?
>> Yes.
> Done
> https://bugzilla.samba.org/show_bug.cgi?id=14535
> I hope I did it right :-)

OK, I 'think' I have tracked this down. During the join, 
'setup_bind9_dns' from sambadns.py is called, this in turn calls 
'secretsdb_setup_dns'. This actually removes any existing 'dns.keytab' 
from the private and bind-dns dirs, it then goes on to create the keytab 
via the commit, but only in the private dir.

Now to consider how to create the keytab in the bind-dns dir, is it that 
the incorrect path is being passed ? Or just move it to the correct 
destination (does anything rely on the dns.keytab being in the private 
dir ?), or do something else ?


More information about the samba-technical mailing list