[Samba] DHCP update registration DNS Bind9

Rowland Penny rpenny at samba.org
Sun Aug 14 14:34:05 UTC 2016

On Sun, 14 Aug 2016 14:00:41 +0000 (UTC)
Ricardo Pardim Claus via samba <samba at lists.samba.org> wrote:

> Dear Rowland, 
> I appreciate the initial contact and the hint that you sent. 
> I followed the tips presented in the wiki Samba and implemented the
> script on Centos 7. Apparently it's working. I'll wait for the next
> hours work, to make sure it worked. 

Glad it works for you, I have been using this way for over 3 years.
> I have doubts: 
>   - It is possible to manually perform the update script DNS? I tried
> to manually run but could not. 

Well, I suppose if you were to run it as the user that runs dhcp, it
may work, but why would you want to ? I never have, or even had the
need to.

>   - Dhcpd that will be in charge of running the script every time the
> transactions (commit, release and expiry) are taken?

Well, technically it is dhcpuser, but yes.
>   - In my smb.conf I had added the following lines. I must or can
> discard? This is the primary smb.conf DC where the DHCP + Bind9 is: 
> kerberos method = system keytab 
> client ldap sasl wrapping = sign 
> allow dns updates = nonsecure and secure 
> nsupdate command = /usr/bin/nsupdate -g 

I do not have these lines in smb.conf on the DCs, but if I run
'samba-tool testparm -v', I get:

	kerberos method = default
	client ldap sasl wrapping = sign
	allow dns updates = secure only
	nsupdate command = /usr/bin/nsupdate -g


More information about the samba mailing list