[Samba] DNS update via trusted machine account

Александр Р. Фахрутдинов alex_mgsm at mail.ru
Tue Dec 29 06:42:07 MST 2009


As is known, Samba creates or updates AD DNS record only when it has joining 
to domain. When OS gets a new IP address via DHCP, there is no method for 
automatically DNS upgate with Samba.
It's possible to update DNS with nsupdate-gss script, but it requests Kerberos 
TKEY, derived through kinit utility or pam_winbind module. In both cases, a 
domain admin password requests.

However, Windows updates DNS using machine account. I think, if Samba exports 
a machine key somehow, it may be used for automatically DNS update via 
nsupdate-gss.
 
Is someone knows how to export a machine key from Samba?


More information about the samba mailing list