[Samba] problem for joining the domain.

Dale Schroeder dale at BriannasSaladDressing.com
Tue Mar 6 11:49:50 MST 2012


On 03/06/2012 9:10 AM, Rajeev R. Veedu wrote:
> I am having a problem to join one of my machine, to the 2003 AD. I have used the same config on another machine and it works fine. I am not able to figure out where I am going wrong. I would appreciates if you could help. My samba version is 3.6.3-44 on Centos 6
>
> This is what I get
>
> [root at scan_srv2 tmp]# net ads join -U Administrator
> Enter Administrator's password:
> Using short domain name -- DOMAIN
> Joined 'SCAN_SRV2' to realm 'DOMAIN.com'
> DNS Update for scan_srv2.DOMAIN.com failed: ERROR_DNS_INVALID_NAME

For DNS, underscores "_" are not a valid character in the hostname; 
changing to a hyphen "-" should stop that error message.
Android phones are notorious for causing this error with DHCP/DNS.

More info:  
http://networkadminkb.com/KB/a156/windows-2003-dns-and-the-underscore.aspx

Dale

> DNS update failed!
>
> My smb.config is
>
>
>     workgroup = DOMAIN
>     admin users = Administrator
>     realm = DOMAIN.COM
>     server string = Linux Samba File Server
>     security = ADS
>     encrypt passwords = yes
>     preferred master = no
>     template shell = /bin/false
>     template homedir = /home/%D/%U
>     idmap uid = 10000-20000
>     idmap gid = 10000-20000
>     enhanced browsing = no
>     winbind use default domain = yes
>     winbind enum users = Yes
>     winbind enum groups = Yes
>     winbind nested groups = Yes
>     winbind separator = /
>     server string = scan_srv2
>     netbios name = scan_srv2
>     password server = 192.168.1.223
>     debuglevel = 10
> [Data]
>          comment = P drive and T drive
>          path = /Data/Data-01/
>          writable = yes
>          guestok = yes
>          nt acl support = yes
>          #inherit acls = yes
>          #inherit permissions = yes
>
> My krb5.conf
>
> [logging]
>   default = FILE:/var/log/krb5libs.log
>   kdc = FILE:/var/log/krb5kdc.log
>   admin_server = FILE:/var/log/kadmind.log
>
> [libdefaults]
>   default_realm = DOMAIN.COM
>   dns_lookup_realm = true
>   dns_lookup_kdc = true
>   ticket_lifetime = 24h
>   renew_lifetime = 7d
>   forwardable = yes
>
> [realms]
>   DOMAIN.COM = {
>    kdc = projects01.DOMAIN.com
>    admin_server = 192.168.1.223
>    default_domain = DOMAIN.com
>   }
>
> [domain_realm]
>   .kerberos.server = DOMAIN.COM
>   .DOMAIN.com = DOMAIN.COM
> [kdc]
> profile = /var/kerberos/krb5kdc/kdc.conf
>
> [appdefaults]
> pam = {
>     debug = false
>     ticket_lifetime = 36000
>     renew_lifetime = 36000
>     forwardable = true
>     krb4_convert = false
> }
>
>


More information about the samba mailing list