[Samba] Authentication to Secondary Domain Controller initially fails when PDC is offline
L.P.H. van Belle
belle at bazuin.nl
Thu Dec 10 13:20:17 UTC 2015
Hai Ole,
Ok, so there is your problem.
If you have 2 DC's, then with the command :
host -t SRV _ldap._tcp.my.domain.tld.
you should see :
_ldap._tcp.my.domain.tld has SRV record 0 100 389 dc1.my.domain.tld.
_ldap._tcp.my.domain.tld has SRV record 0 100 389 dc2.my.domain.tld.
Have a look here https://wiki.samba.org/index.php/Check_and_fix_DNS_entries_on_DC_joins
so you have seen bug 10928 in action ;-)
https://bugzilla.samba.org/show_bug.cgi?id=10928
Greetz,
Louis
> -----Oorspronkelijk bericht-----
> Van: Ole Traupe [mailto:ole.traupe at tu-berlin.de]
> Verzonden: donderdag 10 december 2015 14:08
> Aan: L.P.H. van Belle
> Onderwerp: Re: [Samba] Authentication to Secondary Domain Controller
> initially fails when PDC is offline
>
>
>
> Am 09.12.2015 um 17:53 schrieb L.P.H. van Belle:
> > Hai Ole,
> >
> > Can you run on the member where you logged in.
> >
> > host -t SRV _ldap._tcp.samdom.example.com.
> > host -t SRV _kerberos._udp.samdom.example.com.
> >
> > host -t A dc1.samdom.example.com.
> > host -t A dc2.samdom.example.com.
> >
> > and again with
> > search my.domain.tld
> > nameserver IP_of_2st_DC
> > nameserver IP_of_1nd_DC
> >
>
> Both times the same:
>
>
> [root at server me]# host -t SRV _ldap._tcp.my.domain.tld.
> _ldap._tcp.my.domain.tld has SRV record 0 100 389 dc1.my.domain.tld.
>
> [root at server me]# host -t SRV _kerberos._udp.my.domain.tld.
> _kerberos._udp.my.domain.tld has SRV record 0 100 88 dc1.my.domain.tld.
>
> [root at server me]# host -t A dc1.my.domain.tld.
> dc1.my.domain.tld has address IP_of_FirstDC
>
> [root at server me]# host -t A dc2.my.domain.tld.
> dc2.my.domain.tld has address IP_of_SecondDC
>
> There is no need to restart network service after altering resolv.conf,
> right?
>
More information about the samba
mailing list