[Samba] Ubuntu client ddns failure
steve
steve at steve-ss.com
Tue May 20 08:48:30 MDT 2014
On 20/05/14 16:28, Rowland Penny wrote:
> On 20/05/14 15:10, steve wrote:
>> On 20/05/14 15:35, Rowland Penny wrote:
>>> 127.0.0.1 localhost
>>> 127.0.1.1 lubuntu-laptop.hh3.site lubuntu-laptop
>>
>> 'Fraid not. Now it's looking for 'LOCAL':
>>
>> Kerberos: ENC-TS Pre-authentication succeeded --
>> LUBUNTU-LAPTOP$@HH3.SITE using arcfour-hmac-md5
>> Kerberos: AS-REQ authtime: 2014-05-20T16:06:34 starttime: unset
>> endtime: 2014-05-21T02:06:34 renew till: 2014-05-21T16:06:34
>> Kerberos: Client supported enctypes: aes256-cts-hmac-sha1-96,
>> aes128-cts-hmac-sha1-96, arcfour-hmac-md5, des3-cbc-sha1, 25, 26,
>> using arcfour-hmac-md5/arcfour-hmac-md5
>> Kerberos: Requested flags: renewable-ok
>> Kerberos: TGS-REQ LUBUNTU-LAPTOP$@HH3.SITE from
>> ipv4:192.168.1.22:58376 for ldap/hh16.local at HH3.SITE [canonicalize,
>> renewable]
>> Kerberos: Searching referral for hh16.local
>> Kerberos: Returning a referral to realm LOCAL for server
>> ldap/hh16.local at HH3.SITE that was not found
>> Failed find a single entry for
>> (&(objectClass=trustedDomain)(|(flatname=LOCAL)(trustPartner=LOCAL))):
>> got 0
>> Kerberos: samba_kdc_fetch: could not find principal in DB
>>
>> and sssd just gives up:
>> (Tue May 20 16:09:14 2014) [sssd[be[hh3.site]]] [sasl_bind_send]
>> (0x0080): Extended failure message: [SASL(-1): generic failure: GSSAPI
>> Error: Unspecified GSS failure. Minor code may provide more
>> information (Server not found in Kerberos database)]
>> (Tue May 20 16:09:14 2014) [sssd[be[hh3.site]]] [be_run_offline_cb]
>> (0x0080): Going offline. Running callbacks.
>> (Tue May 20 16:09:14 2014) [sssd[be[hh3.site]]]
>> [ad_subdomains_get_conn_done] (0x0080): No AD server is available,
>> cannot get the subdomain list while offline
>>
>>
> OK, so where does 'LOCAL' come from ??
>
> Try this on the client:
>
> nano /etc/nsswitch.conf
>
> Change:
>
> hosts: files mdns4_minimal [NOTFOUND=return] dns mdns4
>
> To:
>
> hosts: files dns
>
> See if that cures your problems.
>
> Rowland
>
No:( It's insisting on the a.root.servers
More information about the samba
mailing list