[Samba] Samba4 classic upgrade problem

"René R. Jagow" rene.jagow at gut-cert.de
Mon Mar 23 05:00:45 MDT 2015 

Hello.

I'm trying to perform a classic upgrade from Samba 3.6.6 with LDAP
backend on Debian to 4.1.6 on Ubuntu on a new machine.
The samba-tools creates the following *smb.con*f:

*# cat /etc/samba/smb.conf**
*[global]
        workgroup = SOMEDOM
        realm = somedom.local
        netbios name = SOMEDOM
        server role = member server
        passdb backend = samba_dsdb
        server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc,
drepl, winbind, ntp_signd, kcc, dnsupdate
        idmap_ldb:use rfc2307 = yes

But if I run:
*# sed -i 's/member server/active directory domain controller/g'
/etc/samba/smb.conf**
**# service slapd stop**
* * Stopping OpenLDAP slapd
[ OK ]
*#**samba**
**# cat /var/log/samba/log.**
[2015/03/17 14:49:46.694097,  0]
../source4/smbd/server.c:370(binary_smbd_main)
  samba version 4.1.6-Ubuntu started.
  Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/17 14:49:46.838548,  0]
../source4/smbd/server.c:492(binary_smbd_main)
  samba: using 'standard' process model
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
[2015/03/17 14:49:46.845394,  0]
../source4/lib/tls/tlscert.c:70(tls_cert_generate)
  Attempting to autogenerate TLS self-signed keys for https for hostname
'SOMEDOM.somedom.local'
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
[2015/03/17 14:49:46.848705,  0]
../source4/smbd/service_stream.c:346(stream_setup_socket)
  Failed to listen on 0.0.0.0:464 - NT_STATUS_ADDRESS_ALREADY_ASSOCIATED
[2015/03/17 14:49:46.848876,  0] ../source4/kdc/kdc.c:672(kdc_add_socket)
  Failed to bind to 0.0.0.0:464 TCP - NT_STATUS_ADDRESS_ALREADY_ASSOCIATED
[2015/03/17 14:49:46.848976,  0]
../source4/smbd/service_task.c:35(task_server_terminate)
  task_server_terminate: [kdc failed to setup interfaces]
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
[2015/03/17 14:49:46.851094,  0]
../source4/smbd/server.c:211(samba_terminate)
  samba_terminate: kdc failed to setup interfaces
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
samba: setproctitle not initialized, please either call
setproctitle_init() or link against libbsd-ctor.
[2015/03/17 14:49:46.856521,  0]
../source4/smbd/service_task.c:35(task_server_terminate)
  task_server_terminate: [Cannot start Winbind (domain controller):
Failed to find record for SOMEDOM in /var/lib/samba/private/secrets.ldb:
No such object: (null): Have you provisioned the SOMEDOM domain?]
[2015/03/17 14:49:46.927905,  0]
../source4/lib/tls/tlscert.c:166(tls_cert_generate)
  TLS self-signed keys generated OK
[2015/03/17 14:49:46,  0] ../source3/smbd/server.c:1198(main)
  smbd version 4.1.6-Ubuntu started.
  Copyright Andrew Tridgell and the Samba Team 1992-2013
*# samba-tool user setpassword root**
*New Password:
ERROR: Failed to set password for user 'root': Unable to find user "root"
*# samba-tool user add root**
*New Password:
Retype Password:
User 'root' created successfully
*# smbclient -L localhost -U%**
*session setup failed: NT_STATUS_INVALID_SERVER_STATE

There are no shares defined in the generated smb.conf (not even netlogon
or sysvol) and there is no record for the domain in the generated
secrets.ldb.
This result differs from what I found on the web. Including the
Samba_AD_DC_HOWTO.

Could you please tell me, what I might have missed or what should I do,
to get this samba installation properly provissioned/upgraded and running.

Thanks in advance!
René

-- 

René R. Jagow
EDV-Service

GUT Certifizierungsgesellschaft 	Fon: 	+49 30 2332021-34
für Managementsysteme mbH 	Fax: 	+49 30 2332021-39
Umweltgutachter
Eichenstraße 3b 	Mail: 	rene.jagow at gut-cert.de
<mailto:rene.jagow at gut-cert.de>
D - 12435 Berlin 	Web: 	www.gut-cert.de <http://www.gut-cert.de/>


AFNOR groupe

ZERTIFIZIERUNG IST VERTRAUENSSACHE - AM BESTEN GUTcert!
CERTIFICATION IS A MATTER OF TRUST - TRUST GUTcert!
CERTIFIER EST UNE AFFAIRE DE CONFIANCE - GUTcert!

THE CONTENTS OF THIS MESSAGE MAY ONLY BE USED FOR THE INTENDED PURPOSES.
Geschäftsführer: Prof. Dr.-Ing. Jan Uwe Lieback , Berlin,
Amtsgericht Charlottenburg, HRB 64544 , USt-ID-Nr. DE 190888348

More information about the samba mailing list