[Samba] Samba 4 + bind9
Gilberto Nunes
gilberto.nunes at selbetti.com.br
Thu Nov 19 05:06:43 MST 2009
HI again
I get success to login in samba 4 domaid, and this time is fast...
But I can't manage the domain, yet...
I see this message on log from samba:
Kerberos: TGS-REQ Administrator at SELB.COM from 192.168.200.110 for
cifs/selb.com at SELB.COM [renewable, forwardable]
Kerberos: Searching referral for selb.com
Kerberos: Returning a referral to realm COM for server
cifs/selb.com at SELB.COM that was not found
Failed find a single entry for
(&(objectClass=trustedDomain)(|(flatname=COM)(trustPartner=COM))): got 0
Kerberos: hdb_samba4_fetch: could not find principal in DB
Kerberos: Server not found in database: krbtgt/COM at SELB.COM: no such
entry found in hdb
Kerberos: Failed building TGS-REP to 192.168.200.110
IP 192.168.200.100 is the WS windows xp pro...
Then, I thing that is a missconfiguration of kerberos.... perhaps!!!
Someone can help me?
Em Qui, 2009-11-19 às 08:25 -0200, Gilberto Nunes escreveu:
> Hi all
>
> I try deploy samba 4 with bind 9.
> I already configure named.conf and named.options according to:
>
> http://wiki.samba.org/index.php/Samba4/HOWTO
>
> But when I declare this variable:
>
> export KRB5_KTNAME=/usr/local/samba/private/dns.keytab
>
> And try run
>
> named -d 9999 -f -g
>
> I get this message from console:
>
> 19-Nov-2009 08:01:33.782 failed to acquire accept credentials for
> DNS/selb.local: GSSAPI error: Major = An invalid name was supplied,
> Minor = Configuration file does not specify default realm.
>
> I do not know what's happen...
>
> Somebody can help me...
>
> name.conf:
>
> include "/etc/bind/named.conf.options";
> include "/etc/bind/named.conf.local";
> include "/etc/bind/named.conf.default-zones";
>
> zone "selb.local." IN {
> type master;
> file "/usr/local/samba/private/selb.local.zone";
> update-policy {
> grant SELB.LOCAL ms-self * A AAAA;
> };
> };
> zone "200.168.192.in-addr.arpa" in {
> type master;
> file "200.168.192.in-addr.arpa.zone";
> update-policy {
> grant *.LOCAL wildcard *.200.168.192.in-addr.arpa. PTR;
> };
> };
> And named.options here:
>
> options {
> directory "/var/cache/bind";
>
> auth-nxdomain no; # conform to RFC1035
> listen-on-v6 { any; };
> tkey-gssapi-credential "DNS/selb.local";
> tkey-domain "SELB.LOCAL";
> };
>
>
> Thanks for any help
>
> Gilberto Nunes Ferreira
> TI
> Selbetti Gestão de Documentos
> Telefone: +55 (47) 3441-6004
> Celular: +55 (47) 8861-6672
>
>
>
> "Bendita a nação cujo Deus é o SENHOR!"
> 99 <><
>
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
Gilberto Nunes Ferreira
TI
Selbetti Gestão de Documentos
Telefone: +55 (47) 3441-6004
Celular: +55 (47) 8861-6672
"Bendita a nação cujo Deus é o SENHOR!"
99 <><
More information about the samba
mailing list