[Samba] Classicupgrade succeded with Sernet-samba-4.2.1 AD, but Kinit not wokring

Rowland Penny rowlandpenny at googlemail.com
Wed Apr 29 07:14:15 MDT 2015 

On 29/04/15 14:05, Mario Pio Russo wrote:
> Great Rowland!!!
>
> in fact by using the line
>
> server service = +dns
>
> I am able to have the internal DNS and the kerberos server working!!
>
> now kinit works just fine
>
> thanks!
>
> (btw, do we have the list of "services" that we can put in the smb.conf?)
>
> ___________________________________________________________________________________________
>
> Mario Pio Russo, System Admin SWG IT Services Dublin, Phone & FAX: +353 1
> 815 2236, eMail: mariopiorusso at ie.ibm.com
> IBM Ireland Product Distribution Limited registered in Ireland with number
> 92815. Registered Office: IBM House, Shelbourne Road, Ballsbridge, Dublin 4
>
> (Embedded image moved to file: pic10822.gif)
>
>
>
> From:	Rowland Penny <rowlandpenny at googlemail.com>
> To:	samba at lists.samba.org
> Date:	29/04/2015 13:58
> Subject:	Re: [Samba] Classicupgrade succeded with Sernet-samba-4.2.1 AD,
>              but Kinit not wokring
> Sent by:	samba-bounces at lists.samba.org
>
>
>
> On 29/04/15 13:10, Mario Pio Russo wrote:
>> Good Day All
>>
>> I have been trying to upgrade from samba 3 to samba 4.2.1 on Ubuntu 14.4
>> using the sernet-samba  package.
>>
>> the upgrade seems to work fine and the samba4 comes up correctlly,
>>
>> I have also run the following script to get rid of bug
>>
>>
>>
> https://git.samba.org/?p=samba.git;a=blob_plain;f=source4/scripting/devel/chgtdcpass;h=4f5ea15a80c2862daf170a5657658a8163174f8a;hb=HEAD
>
>>
>>
>> I am able to resolve some basic dns entry using the host command, and
>> that's good,  however any kinit  does not work and return
>>
>> kinit mariopio at CCDC.LAN
>> kinit: Cannot contact any KDC for realm 'CCDC.LAN' while getting initial
>> credentials
>>
>>
>> my smb.conf file is the following
>>
>> # Global parameters
>> [global]
>>           workgroup = CCDC
>>           realm = ccdc.lan
>>           netbios name = CCDC-SAMBA4
>>           server role = active directory domain controller
>>           idmap_ldb:use rfc2307 = yes
>>           dns forwarder = 9.0.138.50
>>           server services = dns winbind
>>           #server services = winbind
>>
>>
>> [netlogon]
>>           path = /var/lib/samba/sysvol/ccdc.lan/scripts
>>           read only = No
>>
>> [sysvol]
>>           path = /var/lib/samba/sysvol
>>           read only = No
>>
>>
>> do you have any suggestion?
>>
>> thanks
>>
>>
> Yes, by using this 'server services = dns winbind' as it is, you have
> turned off *all* the other server services!
>
> Rowland
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>
>

If you run 'samba-tool testparm -v  | grep 'server services' (you will 
have to press the enter key) , you should get a list of your default ones.

If when you provision a domain, you provision with bind9, you do in fact 
get a 'server services' line in smb.conf.

Rowland

More information about the samba mailing list