[Samba] nsupdate-gss
Dag Wieers
dag at wieers.com
Wed Aug 1 14:50:07 GMT 2007
On Tue, 22 May 2007, Gerald (Jerry) Carter wrote:
> Miguel Gonzalez Castaños wrote:
> >
> >>> - Any tutorial, documentation or similar. I have googled a bit for
> >>> some references but I couldn't find anything.
> >>>
> >>
> >> See --with-dnsupdate in the 3.0.25 release. Works with
> >> Windows 2000 SP4 and Windows 2003 DNS.
> >>
> > Which command? smbclient?
>
> "net ads dns register -P"
Hi Jerry,
As a follow-up on my previous mail wrt. nsupdate-gss and --with-dnsupdate.
Apparently if you have Active Directory deployed with "Sites and
Services", you can only register your name with a local DC. Both the
normal nsupdate-gss and samba fail to work correctly in such an
environment.
If you have the time, could you look at the mail I send a few minutes ago
and see if you can verify or fill in any information I am missing. And can
we look into improving both the samba implementation as well as the
nsupdate-gss to work in a more complex environment like we have ?
PS I also noticed that the nsupdate-gss fails even when it by accident
takes a local DC because it does not use the same server for $nameserver
and $server_name, which causes the TKEY negotiation to fail.
This could explain tridge his 'only one out of two attempts work'. In
fact, only 1 out of X attempts will work when X number of nameservers are
available. Only if you have a single DC it will work consistently.
Kind regards,
-- dag wieers, dag at wieers.com, http://dag.wieers.com/ --
[Any errors in spelling, tact or fact are transmission errors]
More information about the samba
mailing list