[Samba] debian wheezy with backports samba domain join FAIL ( BUG! )

L.P.H. van Belle belle at bazuin.nl
Tue Sep 30 00:29:03 MDT 2014 

phfeeww..  really.. you dont want to smell my shoes.. ;-) 

I was thinks about the same with the versions which it works which not.. ( since it did work before.. ) 
But so annoing when i'm making new scripts, im searching ghosts.. 

Greetz, 

Louis


>-----Oorspronkelijk bericht-----
>Van: rowlandpenny at googlemail.com 
>[mailto:samba-bounces at lists.samba.org] Namens Rowland Penny
>Verzonden: maandag 29 september 2014 17:20
>Aan: samba at lists.samba.org
>Onderwerp: Re: [Samba] debian wheezy with backports samba 
>domain join FAIL ( BUG! )
>
>On 29/09/14 15:38, L.P.H. van Belle wrote:
>> Hai Rowland,
>>
>> This was a new domain setup, so it can be possible that an 
>old domain works ok.
>>
>> I even did a manual install and i tested my scripts and same 
>result, totaly 4 installs all failed.
>> Then 1 install with the sernet script, all ok in one time.
>>
>> try it with a new domain and the 4.1.11 samba backports.
>> If you manage to get the second server joined without a 
>problem then im eating my shoes..
>
>Hi Louis, I think your shoes are safe ;-)
>
>I intially used version 4.1.9 from backports on both of the DC's and 
>then when 4.1.11 came out I upgrade via apt-get. What I was trying to 
>get at was, it worked for me with 4.1.9 and doesn't for you 
>with 4.1.11, 
>so the problem must be whatever changed between the two.
>
>>
>> My setup was like the sernet scripts setup.
>> I just changed the packages to the debian backports packages.
>>
>> I installed the backports with : apt-get install -t 
>wheezy-backports samba samba-vfs-modules attr acl -y
>I installed:
>samba attr krb5-config krb5-user ntp bind9 bind9utils dnsutils winbind 
>libpam-winbind libpam-krb5 libnss-winbind libsmbclient smbclient
>
>>
>> resolv.conf settings
>> search internal.domain.tld
>> nameserver ip_of_first_dc
>>
>> and a correct hosts.
>> kerberos all checked ok for the firest server.
>> kerberos checked ok for the second server but this part :
>>
>> echo "Testing : dns entries"
>> if [ -z "`host -t SRV _ldap._tcp.internal.domain.tld. | grep 
>'not found'`" ]; then
>>      echo "testing of : host -t SRV 
>_ldap._tcp.internal.domain.tld. : ok"
>>      TEST1=0
>> else
>>      echo "testing of : host -t SRV 
>_ldap._tcp.internal.domain.tld. : FAILED"
>>      TEST1=1
>> fi
>> if [ -z "`host -t SRV _kerberos._udp.internal.domain.tld. | 
>grep "not found" `" ]; then
>>      echo "testing of : host -t SRV 
>_kerberos._udp.internal.domain.tld. : ok"
>>      TEST2=0
>> else
>>      echo "testing of : host -t SRV 
>_kerberos._udp.internal.domain.tld. : FAILED"
>>      TEST2=1
>> fi
>> if [ -z "`host -t A ${SETHOSTNAME}.internal.domain.tld. | 
>grep "not found" `" ]; then
>>      echo "testing of : host -t A 
>${SETHOSTNAME}.internal.domain.tld. : ok"
>>      TEST3=0
>> else
>>      echo "testing of : host -t A 
>${SETHOSTNAME}.internal.domain.tld. : FAILED"
>>      echo "trying to fix it now: "
>>      samba-tool dns add ${SETHOSTNAME}.${SETDNSDOMAIN} 
>internal.domain.tld HOSTNAME A ${IPDC2}
>> fi
>>
>> all errors.
>>
>> the last line :     samba-tool dns add 
>${SETHOSTNAME}.${SETDNSDOMAIN} ${SETDNSDOMAIN} ${SETHOSTNAME} 
>A ${SETIPDC2}
>> did say i added the dns record, but it wasnt added.
>> i rechecked all dns entries and there was missing a lot.
>>
>> But dont put to much time in it. i'll hope this is fixed in 
>4.1.12, but it isnt yet in backports.
>
>Yes it does seem to be taking sometime for the next version, but hey, 
>this is debian ;-)
>
>Rowland
>
>> Greetz,
>>
>> Louis
>>
>>
>>
>>> -----Oorspronkelijk bericht-----
>>> Van: rowlandpenny at googlemail.com
>>> [mailto:samba-bounces at lists.samba.org] Namens Rowland Penny
>>> Verzonden: maandag 29 september 2014 16:17
>>> Aan: samba at lists.samba.org
>>> Onderwerp: Re: [Samba] debian wheezy with backports samba
>>> domain join FAIL ( BUG! )
>>>
>>> On 29/09/14 14:55, L.P.H. van Belle wrote:
>>>> Hai,
>>>>    
>>>> After some testing i can confirm there is a bug in the
>>> debian backports samba. ( 4.1.11 the latest in backports )
>>>>    
>>>> The first server setups up ok without any problem.
>>>> When you want to join the second server, it says its al
>>> succesfull but dont be fooled... its not!
>>>>    
>>>> non of the needed dns entries are created.  ( samba-tool drs
>>> showrepl ) gives WERR_BADFILE
>>>> No hostname, aka :  no alias in _msdcs.internal.domain.tld
>>> no SRV records and no CNAME records,
>>>> is found in the first AD server (bind9 dns was used)
>>>>    
>>>> I redid my steps with a sernet-samba installation and then
>>> everything is created as it should.
>>>>    
>>>> You have been warned!
>>>>    
>>>> Greetz,
>>>>    
>>>> Louis
>>>>    
>>> Hi Louis, if you are sure the problem exists and it wasn't just a
>>> one-off problem, then it should be easy to track down. I 
>created a new
>>> domain with wheezy & samba from backports, but the samba
>>> version at that
>>> time was 4.1.9 and I have since upgraded to 4.1.11. I joined a
>>> second DC
>>> when I created the domain and everything worked ok then and is still
>>> working ok now.
>>>
>>> Rowland
>>>
>>> -- 
>>> To unsubscribe from this list go to the following URL and read the
>>> instructions:  https://lists.samba.org/mailman/options/samba
>>>
>>>
>
>-- 
>To unsubscribe from this list go to the following URL and read the
>instructions:  https://lists.samba.org/mailman/options/samba
>
>

More information about the samba mailing list