[Samba] bug in join samba DC ( debian package )
L.P.H. van Belle
belle at bazuin.nl
Mon Mar 24 09:43:24 MDT 2014
Hai, ( and sorry ivo for mailing you directly )
I dont know where to report this so im doing this here also. ( cant report backport packages )
Seen on Debian Wheezy samba backport package 4.1.6
When you provision the server its all ok.
( server 1 ) ( /var/lib/samba/private )
drwxrwx--- 3 root bind 4096 Mar 24 15:03 dns
-rw-r----- 1 root bind 877 Mar 24 15:03 dns.keytab
-rw-r--r-- 1 root root 2270 Mar 24 15:03 dns_update_list
(server 2) the join, exacly same setup.
drwxrwx--- 3 root bind 4096 Mar 24 15:34 dns
-rw------- 1 root root 877 Mar 24 15:34 dns.keytab <== missing r and bind rights.
-rw-r--r-- 1 root root 2270 Mar 24 15:34 dns_update_list
so if you see in you daemon.log :
/usr/sbin/samba_dnsupdate: dns_tkey_negotiategss: TKEY is unacceptable
stop samba
and on the debian server, fix the right on /var/lib/samba/private/dns.keytab
chown root:bind /var/lib/samba/private/dns.keytab
chmod 750 /var/lib/samba/private/dns.keytab
start samba
and yes this is on the wiki, thats how i very quickly did fix this
but when 1 works and 1 not, its a bit confusion.
Louis
More information about the samba
mailing list