[Samba] Samba AD DC initial join fails at schema replication

Matthieu Patou mat at samba.org
Thu Jan 17 14:57:24 MST 2013 

On 01/16/2013 06:03 PM, Rican, Joshua T Civ USAF AF ISR Agency 
NASIC/SCXE wrote:
> Date: 16Jan2013
> Samba Version: 4.0.1
> OS Version: RHEL 6.3
> Windows OS: Server 2012
> Forest/Domain: 2008r2
>
> Replaced libnet_vampire.c (corrected ERROR: no subClassOf 'top' for 'samDomain') source [https://bugzilla.samba.org/show_bug.cgi?id=8680]
>
> #/usr/lobal/bin/samba-tool domain join <dnsdomain> DC -U administrator
>
> Identifies DC, joins the domain and performs adding SPNs to the Domain Controllers OU
> .....
> Setting account password for RHELDC1$
>
> Enabling account
>
> Calling bare provision
>
> No IPv6 address will be assigned
>
> Provision OK for domain DN <dnsdomain>
>
> Starting replication
>
> Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[402] linked_values[0]
>
> Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[802] linked_values[0]
>
> Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[1206] linked_values[0]
>
> Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[1593] linked_values[0]
>
> Schema-DN[CN=Schema,CN=Configuration,<dnsdomain>] objects[1688] linked_values[0]
>
> Analyze and apply schema objects
>
> Can't continue Schema load: didn't manage to convert any objects: all 22 remaining of 1688 objects failed to convert
>
> Join failed - cleaning up
>
> .....
>
> -d 1 returns several messages (some of the messages follow (would include more but I have to handjam them out), all of the messages state a failure to convert into ldb msg):
>
> ../source4/dsdb/schema/schema_syntax.c:1076: Unknown attributeID_id 0x000908BA
>
> Warning: Failed to convert schema object CN=Computer,CN=Schema,CN=Configuration,<dnsdomain> into ldb msg
>
> ../source4/dsdb/schema/schema_syntax.c:1076: Unknown attributeID_id 0x000908A5
>
> Warning: Failed to convert schema object CN=RID-Manager,CN=Schema,CN=Configuration,<dnsdomain> into ldb msg
>
> ../source4/dsdb/schema/schema_syntax.c:1021: Unknown governsID_id 0x000A010D
>
> Warning: Failed to convert schema object CN=ms-DS-Claim-Type,CN=Schema,CN=Configuration,<dnsdomain> into ldb msg
>
That's a known issue I have a patch for this it was working back in 
October and it's in my todo to restest it, ping me in a couple of days, 
for the moment you need not to have Windows 2012 schema.

That is to say never join a Windows 2012 server to your domain.

-- 
Matthieu Patou
Samba Team
http://samba.org

More information about the samba mailing list