[Samba] Samba 3 classicupgrade to Samba AD

Max Olivas molivas at northglenn.org
Fri Jan 4 12:28:10 MST 2013


Hey All,
 
I have a Samba 3 PDC (Debian, Samba version 3.5.6 with NIS groups and no winbind) with about 300 users, 200 client PC's, 15 member servers(mixed Windows Server 2003/2008 and Samba 3), and I'm attempting the classicupgrade to Samba AD.  To test I've created a new Ubuntu 12.04 LTS and followed the HOWTO, successfully creating a blank Samba AD and testing adding users/PC's and connecting with Windows AD tools.  I then attempted the classicupgrade (rolled VM back and copied .tdb files and smb.conf from current PDC) but I'm getting several errors.
 
root at telluride:~# /usr/local/samba/bin/samba-tool domain classicupgrade --dbdir /root/old-samba/ --use-xattrs=yes --realm=northglenn.org /root/old-samba/smb.conf
Reading smb.conf
Processing section "[netlogon]"
Unknown parameter encountered: "share modes"
Ignoring unknown parameter "share modes"
Provisioning
Exporting account policy
Exporting groups
Exporting users
Ignoring group memberships of 'L-LECHUGA$' S-1-5-21-684095783-2094215992-774919444-1995: Unable to enumerate group memberships, (-1073741724,No such user)
Ignoring group memberships of 'ahendrickson' S-1-5-21-684095783-2094215992-774919444-1921: Unable to enumerate group memberships, (-1073741724,No such user)
Ignoring group memberships of 'tkuenning' S-1-5-21-684095783-2094215992-774919444-1744: Unable to enumerate group memberships, (-1073741724,No such user)
 
.....There are a bunch of identical errors here that I'm omitting, one for every user/PC in the domain I'm guessing.
 
Ignoring group memberships of 'S-GURULE$' S-1-5-21-684095783-2094215992-774919444-1658: Unable to enumerate group memberships, (-1073741724,No such user)
Next rid = 6155
Exporting posix attributes
Reading WINS database
Cannot open wins database, Ignoring: [Errno 2] No such file or directory: '/root/old-samba/wins.dat'
lpcfg_load: refreshing parameters from /usr/local/samba/etc/smb.conf
lpcfg_load: refreshing parameters from /usr/local/samba/etc/smb.conf
Looking up IPv4 addresses
Looking up IPv6 addresses
No IPv6 address will be assigned
Processing section "[netlogon]"
Processing section "[sysvol]"
Module 'acl_xattr' loaded
Setting up secrets.ldb
Setting up the registry
Setting up the privileges database
Setting up idmap db
Setting up SAM db
Setting up sam.ldb partitions and settings
Setting up sam.ldb rootDSE
Pre-loading the Samba 4 and AD schema
partition_metadata: Migrating partition metadata
Adding DomainDN: DC=mydomain,DC=org
DN: DC=northglenn,DC=org is a NC
Adding configuration container
DN: CN=Configuration,DC=northglenn,DC=org is a NC
Setting up sam.ldb schema
DN: CN=Schema,CN=Configuration,DC=northglenn,DC=org is a NC
Setting up sam.ldb configuration data
Setting up display specifiers
Adding users container
Modifying users container
Adding computers container
Modifying computers container
Setting up sam.ldb data
Setting up well known security principals
Setting up sam.ldb users and groups
Setting up self join
Setting acl on sysvol skipped
Adding DNS accounts
Creating CN=MicrosoftDNS,CN=System,DC=northglenn,DC=org
Creating DomainDnsZones and ForestDnsZones partitions
DN: DC=DomainDnsZones,DC=northglenn,DC=org is a NC
DN: DC=ForestDnsZones,DC=northglenn,DC=org is a NC
Populating DomainDnsZones and ForestDnsZones partitions
Setting up sam.ldb rootDSE marking as synchronized
Fixing provision GUIDs
A Kerberos configuration suitable for Samba 4 has been generated at /usr/local/samba/private/krb5.conf
Setting up fake yp server settings
Once the above files are installed, your Samba4 server will be ready to use
Admin password:        80r&K6jk(EeBM-C
Server Role:           active directory domain controller
Hostname:              telluride
NetBIOS Domain:        NTSERV
DNS Domain:            northglenn.org
DOMAIN SID:            S-1-5-21-684095783-2094215992-774919444
Importing WINS database
Importing Account policy
Importing idmap database
Processing section "[netlogon]"
Processing section "[sysvol]"
Importing groups
Importing users
Failed to create user record CN=watersan ,CN=Computers,DC=northglenn,DC=org: Entry CN=watersan,CN=Computers,DC=northglenn,DC=org already exists
ERROR(<class 'passdb.error'>): uncaught exception - Unable to add sam account 'watersan $', (-1073741725,User exists)
  File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/__init__.py", line 175, in _run
    return self.run(*args, **kwargs)
  File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/domain.py", line 1318, in run
    useeadb=eadb, dns_backend=dns_backend, use_ntvfs=use_ntvfs)
  File "/usr/local/samba/lib/python2.7/site-packages/samba/upgrade.py", line 896, in upgrade_from_samba3
    s4_passdb.add_sam_account(userdata[username])
 
Hopefully someone sees something that I"m doing blatently wrong and can point out my mistake.  Thanks in advance for any help!
 
Thanks,
Max
 


More information about the samba mailing list