[Samba] Was not found in the schema 'msDS-SupportedEncryptionTypes'
Carlos A. P. Cunha
carlos.hollow at gmail.com
Tue Dec 29 17:18:28 UTC 2015
Em 29-12-2015 15:15, Carlos A. P. Cunha escreveu:
> Good afternoon!
> I found the file that you mentioned and this like yours.
> Looking co attributes like this:
> ldbsearch -H /usr/local/samba/private/sam.ldb '(objectclass = person)'
> Not any line with the ms-DS-Supported-Encryption-Types attribute
> My Orginial scenario went like this:
> Windows 2003 there came the samba (4.2), the windows died, was only
> the samba that was upgraded to version 4.3 and climbed the functional
> level to those reported in another e-mail, and now version 4.3.3.
> Em 29-12-2015 13:25, Rowland penny escreveu:
>> On 29/12/15 14:56, Carlos A. P. Cunha wrote:
>>> Good afternoon!
>>> Had a samba 4 with a Windows 2003 network that is not over, I went
>>> up to the level of my domain / forest
>>> Forest level function: (Windows) 2008 R2
>>> Domain function level: (Windows) 2008 R2
>>> Lowest function level of the DC (Windows) 2008 R2
>>> But it seems that Samba is not with all attributes of a Windows 2008.
>>> Even try to join another Samba error appears
>>> ERROR (ldb): uncaught exception - LDAP error 16 LDAP_NO_SUCH
>>> ATTRIBUTE - <0000200 A: objectclass attrs: attribute
>>> "msDS-SupportedEncryptionTypes' on entry 'CN = DC-LINUX-09, OU =
>>> Domain Controllers, DC = mydomain' was not found in the schema> <!>
>>> Any idea ?
>> There appears to be something wrong with your setup, if you examine
>> the file 'MS-AD_Schema_2K8_R2_Attributes.txt' (should be on your
>> system, in a directory called ad-schema), you will this:
>> cn: ms-DS-Supported-Encryption-Types
>> ldapDisplayName: msDS-SupportedEncryptionTypes
>> attributeId: 1.2.840.1135184.108.40.2063
>> attributeSyntax: 220.127.116.11
>> omSyntax: 2
>> isSingleValued: TRUE
>> schemaIdGuid: 20119867-1d04-4ab7-9371-cfc3d5df0afd
>> systemOnly: FALSE
>> searchFlags: 0
>> attributeSecurityGuid: 77b5b886-944a-11d1-aebd-0000f80367c1
>> systemFlags: FLAG_SCHEMA_BASE_OBJECT
>> schemaFlagsEx: FLAG_ATTR_IS_CRITICAL
>> And your DC objects should have this:
>> msDS-SupportedEncryptionTypes: 31
>> Was the original DC a Samba 4 DC ?
More information about the samba