[Samba] Unable to join samba4 to AD as a DC
Andrew Bartlett
abartlet at samba.org
Mon Nov 11 17:40:32 MST 2013
On Mon, 2013-11-11 at 16:14 -0500, Michael Brown wrote:
> On 13-11-05 11:21 PM, Michael Brown wrote:
> > On 13-11-05 10:56 PM, Andrew Bartlett wrote:
> >> I suspect our IDL for DSBindInfo is incorrect, or does not have the
> >> level we need for 2012.
> > I did note that the samba4 documentation (somewhere) recommended not
> > going above W2008R2 functional level, so I did ensure I created the
> > forest and domain at W2008R2.
> >
> > Shouldn't that be enough to avoid this problem? Is it worth the
> > expense of setting up another DC (running W2008R2) just to test domain
> > join against that machine?
> Of course it is :)
>
> I set up another forest from scratch using W2008R2 and using the W2008R2
> forest and domain functional levels.
>
> With this setup, I was able to join the clients without issue (other
> than the usual glibc bug exposed by underscores in DNS names).
>
> So, yes there is a definitely a difference in there exposed by setting
> up the domain using W2012.
Thanks for confirming that. What we need now is for someone to fix up
the IDL (drsuapi.idl) to cope with whatever Windows 2012 is sending us.
Andrew Bartlett
--
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz
More information about the samba
mailing list