[Samba] Undestructible DNS entry
James
lingpanda101 at gmail.com
Wed Dec 2 16:34:30 UTC 2015
On 12/2/2015 11:25 AM, mathias dufresne wrote:
> Hi all,
>
> I'm unable to delete a DNS entry, this entry does not exist.
>
> The entry is A record in _msdcs zone for an old DC which was demoted.
>
> I tried to use samba-tool dns to delete it but without success:
> samba-tool dns delete m703 _msdcs.ad.domain.tld \
> m701._msdcs.ad.domain.tld A 10.16.28.27 -k yes
> ERROR: Record does not exist
>
> I found undeleted entry in LDAP, removed it without success:
> the entry:
> ldbsearch -H $sam -b 'DC=DOMAINDNSZONES,DC=AD,DC=DOMAIN,DC=TLD'
> objectclass=* | grep 701
> dn:
> DC=m701,DC=ad.domain.tld,CN=MicrosoftDNS,DC=DomainDnsZones,DC=ad,DC=domain,DC=tld
> name: m701
> dc: m701
> distinguishedName: DC=m701,DC=ad.domain.tld,CN=MicrosoftDNS,DC=Dom
>
> Of course I can't delete this entry from RSAT DNS tool, the error is:
> The record cannot be deleted.
> The record does not exist.
>
> The question is simple: how to get rid of that entry?
> If I was gambler I would bet on some data, possibly base64 encrypted,
> remaining on some other LDAP entry. I mostly lose my bets.
>
> Thank you for your time, best regards,
>
> mathias
I've had similar issues. I had to use ADSI to delete the entry.
Open ADSI and under Connection point choose "Select or type a
Distinguished Name or Naming Contest:"
Map the following to your domain. You should see the entry. Right click
and delete.
DC=domain.local,cn=MicrosoftDns,dc=DomainDnsZones,dc=domain,dc=local
--
-James
More information about the samba
mailing list