[Samba] Join AD fails DNS update

Rowland Penny rowlandpenny at googlemail.com
Tue Jun 24 13:26:20 MDT 2014

On 24/06/14 20:08, Lars Hanke wrote:
> Hi Steve,
> currently there is no pressing reason. I can register the machines in 
> another DNS domain to make them accessible.
> However, the notion that I do not understand the elementary basics, 
> e.g. where samba stores its DNS entries, gives an uneasy feeling for 
> creating a production solution. If something doesn't work and I know 
> why, I can decide whether I can cope with that. Life has taught me 
> that if something doesn't work and you don't know why, it will hit you 
> even harder later.
The problem is probably that you are only searching on port 389, try 
this search:

ldbsearch -LLL -x -h localhost -p 3268 -b "DC=example,DC=com" -s sub -D 
"CN=Administrator,CN=Users,DC=example,DC=com" -w <ADpassword>


> In case that this is an actual bug, I'd like to hunt it down to either 
> file it properly, or even provide a patch. It's been out there for at 
> least 2 years! But since I'm new to samba4 and AD (not to LDAP, 
> Kerberos, or samba), I acknowledge that I do not understand its full 
> complexity.
> Regards,
>  -lars.

More information about the samba mailing list