[Samba] Join AD fails DNS update

Lars Hanke debian at lhanke.de
Thu Jun 26 04:28:42 MDT 2014 

>> So DLZ claims that the entry exists, but it cannot be accessed by
>> Bind. Any ideas?
> Yes,
> you do not interpret the dig output in a correct manner!
>
> 1.
> Your commandline tells dig to query the server "samba" for the record
> "samba4.ad.microsult.de". But did you get an "Answer SECTION"?
>   No!
>
> 2.
> The "AUTHORITY SECTION" returns a SOA record instead of a NS record.
>
> Conclusion:
> Your bind server @samba has no knowlege which nameserver he should
> consult to retrieve or update a record in zone "ad.microsult.de".

Actually, samba should be authorative for ad.microsult.de with its 
entries retrieved from the samba LDAP by DLZ. In fact samba can resolve 
all existing entries in ad.microsult.de.

root at samba:/# dig @samba samba.ad.microsult.de

; <<>> DiG 9.8.4-rpz2+rl005.12-P1 <<>> @samba samba.ad.microsult.de
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 32949
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;samba.ad.microsult.de.         IN      A

;; ANSWER SECTION:
samba.ad.microsult.de.  900     IN      A       172.16.6.240

;; AUTHORITY SECTION:
ad.microsult.de.        900     IN      NS      samba.ad.microsult.de.

;; Query time: 1 msec
;; SERVER: 172.16.6.240#53(172.16.6.240)
;; WHEN: Thu Jun 26 12:21:36 2014
;; MSG SIZE  rcvd: 69

root at samba:/# dig @samba samba4.ad.microsult.de

; <<>> DiG 9.8.4-rpz2+rl005.12-P1 <<>> @samba samba4.ad.microsult.de
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55243
;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;samba4.ad.microsult.de.                IN      A

;; AUTHORITY SECTION:
ad.microsult.de.        0       IN      SOA     samba.ad.microsult.de. 
hostmaster.ad.microsult.de. 1 900 600 86400 0

;; Query time: 1 msec
;; SERVER: 172.16.6.240#53(172.16.6.240)
;; WHEN: Thu Jun 26 12:22:08 2014
;; MSG SIZE  rcvd: 93

Regards,
  - lars.

More information about the samba mailing list