[Samba] Samba4, DNS, and joining clients

Michael Wood esiotrot at gmail.com
Sun Sep 12 02:36:30 MDT 2010

On 10 September 2010 14:47, Philip M. White <pmw at qnan.org> wrote:
> On Fri, Sep 10, 2010 at 01:56:06PM +0200, Daniel Müller wrote:
>> This is the same way with my samba4 domain. I dont think the
>> dns_update_list is filled up with any ads client machines.
>> Everything in my domain is workin as it should.
>> I think the dns_update_list is there to make the start up named files.
> Do you know how to further debug this? Exactly what part of Samba
> updates DNS when a new client joins a domain? From my reading of
> 'samba_dnsupdate', it doesn't do anything beyond what's in
> private/dns_update_list.

I don't think samba is involved in the DNS updates for clients.
(Other than for handing out Kerberos tickets).

Your /usr/local/samba/private/named.conf.update should contain
something like this:

/* this file is auto-generated - do not edit */
update-policy {
        grant YOUR.REALM ms-self * A AAAA;
        grant administrator at YOUR.REALM wildcard * A AAAA SRV CNAME TXT;
        grant YOURSERVER$@YOUR.REALM wildcard * A AAAA SRV CNAME;

I think the first grant line is supposed to allow your clients to
update their own A or AAAA records.

I have CCed samba-technical in case someone there can confirm this.

Michael Wood <esiotrot at gmail.com>

More information about the samba mailing list