[Samba] Samba4 ClassicUpgrade post-migration issues

Benjamin Arntzen barntzen at digipen.edu
Wed Jun 18 13:14:36 MDT 2014 

Done all suggestions, no change detected.

And nope, no DNSmasq.

On 06/18/2014 12:07 PM, Rowland Penny wrote:
> On 18/06/14 19:59, Benjamin Arntzen wrote:
>> Hi Rowland,
>>
>>
>> On 06/18/2014 11:49 AM, Rowland Penny wrote:
>>> On 18/06/14 19:28, Benjamin Arntzen wrote:
>>>> Hi there,
>>>>
>>>> I've successfully migrated an extremely large Samba3 domain to Samba4.
>>>> The platforms involved:
>>>> Samba files (/var/lib/samba) copied from a Debian 6-based Samba3 
>>>> PDC with an LDAP backend
>>>> Debian 7 with Samba4 installed from backports, with slapd installed 
>>>> locally (and now disabled).
>>>>
>>>> However, a number of things appear to be wrong:
>>>>
>>>> dpadmin at samba4-dev0:~$ host -t SRV _ldap._tcp.ad.digipen.edu
>>>> _ldap._tcp.ad.digipen.edu has SRV record 0 100 389 %h.ad.digipen.edu.
>>>>
>>>> dpadmin at samba4-dev0:~$ sudo service samba restart
>>>> [ ok ] Stopping NetBIOS name server: nmbd.
>>>> [ ok ] Stopping SMB/CIFS daemon: smbd.
>>>> [....] Stopping Samba AD DC daemon: sambastart-stop-daemon: 
>>>> *warning: failed to kill 10121: No such process*
>>>> . ok
>>>> [ ok ] Starting Samba AD DC daemon: samba.
>>>>
>>>> dpadmin at samba4-dev0:~$ kinit administrator at AD.DIGIPEN.EDU
>>>> kinit: Cannot contact any KDC for realm 'AD.DIGIPEN.EDU' while 
>>>> getting initial credentials
>>>>
>>>> This is the current contents of my /etc/samba/smb.conf:
>>>> ####SOF####
>>>> # Global parameters
>>>> [global]
>>>>         workgroup = DIGIPEN.EDU
>>>>         realm = ad.digipen.edu
>>>>         netbios name = %H
>>>>         server role = active directory domain controller
>>>>         idmap_ldb:use rfc2307 = yes
>>>>         # Only allow signed updates
>>>>         #allow dns updates = signed
>>>>
>>>>         # If recursive queries = yes is set, the following is also 
>>>> needed
>>>>         dns forwarder = 204.174.42.68
>>>>
>>>> [netlogon]
>>>>         path = /var/lib/samba/sysvol/ad.digipen.edu/scripts
>>>>         read only = No
>>>>
>>>> [sysvol]
>>>>         path = /var/lib/samba/sysvol
>>>>         read only = No
>>>>
>>>> ####EOF####
>>>>
>>>> How do I get Samba to start returning valid values for DNS?
>>>> ~ Benjamin
>>> Hi, what's in /etc/resolv.conf , /etc/krb5.conf , /etc/hostname and 
>>> /etc/hosts
>>>
>>> Rowland
>>>
>>
>> dpadmin at samba4-dev0:~$ cat /etc/resolv.conf
>> domain ad.digipen.edu
>> search ad.digipen.edu
>> nameserver 10.1.20.137
>> #nameserver 204.174.42.68
>> #nameserver 204.174.42.88
>
> I take it 10.1.20.137 is the ipaddress of the samba4 server, if so, 
> this is ok.
>
>> dpadmin at samba4-dev0:~$ cat /etc/krb5.conf
>> [libdefaults]
>>         default_realm = ad.digipen.edu
>>         dns_lookup_realm = false
>>         dns_lookup_kdc = true
>
> Change the lowercase 'ad.digipen.edu' to uppercase 'AD.DIGIPEN.EDU'
>
>> dpadmin at samba4-dev0:~$ cat /etc/hostname
>> samba4-dev0
>
> OK
>
>> dpadmin at samba4-dev0:~$ cat /etc/hosts
>> 127.0.0.1    localhost
>> 127.0.1.1    samba4-dev0.digipen.edu    samba4-dev0
>>
>> # The following lines are desirable for IPv6 capable hosts
>> ::1     localhost ip6-localhost ip6-loopback
>> ff02::1 ip6-allnodes
>> ff02::2 ip6-allrouters
>>
> This should be ok, but you could try changing 127.0.1.1 to 10.1.20.137
>
> One last thought, dnsmasq isn't running in any form is it ?
>
> Rowland
>
>

More information about the samba mailing list