[Samba] NS Records for AD-Integrated Zones

Andrew Bartlett abartlet at samba.org
Sat Apr 30 08:09:09 UTC 2016


On Tue, 2016-04-26 at 09:02 -0400, lingpanda101 at gmail.com wrote:
> On 4/25/2016 9:50 PM, Isaiah Olson wrote:
> > Hello,
> > 
> > My domain was provisioned using a Windows 2008R2 server as the
> > first DC,
> > and I then subsequently joined a Samba 4.4.2 DC running on Ubuntu
> > 14.04.4
> > and using BIND 9.9.5 as the DNS backend. Everything seems to be
> > working
> > properly after I added an NC replica for the zones as per the
> > troubleshooting page. All zones resolve and replicate properly, but
> > I
> > noticed that there are no NS records corresponding to the Samba DC
> > added to
> > the AD-Integrated DNS zones. I have manually added records for the
> > DC to
> > all existing zones, but I also noticed that when creating a new AD
> > integrated zone using the Windows DNS manager, there are only NS
> > records
> > for the domain controller that I am connected to in the zone by
> > default.
> > 
> > Is this behavior expected? And is there any way to make sure that
> > NS
> > records are added for all DCs? I could be remembering incorrectly,
> > but I
> > recall that when our network was using an all Windows AD
> > environment, the
> > AD zones had NS records for all DCs included by default.
> > 
> > Thanks,
> > Isaiah
> In a samba only environment it's expected. I do believe at some point
> the devs. will update Samba to add all NS records for all DC's.

I have patches for this, but I didn't finish them (mostly trying to add
tests, which turns out to be harder than it should be).

Andrew Bartlett

-- 
Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba






More information about the samba mailing list