[Samba] NT_STATUS_NO_LOGON_SERVERS after removing a DC and WERR_BADFILE when trying to remove broken DC
Rowland Penny
rpenny at samba.org
Thu Apr 20 16:38:24 UTC 2017
On Thu, 20 Apr 2017 18:00:24 +0200
Sven Schwedas via samba <samba at lists.samba.org> wrote:
> On 2017-04-07 13:44, Sven Schwedas via samba wrote:
> > In the end I just upgraded all DCs to 4.5 and remote-deleted the
> > broken ones. Seemed to work without a hitch, manual removal was
> > only necessary to remove the IPs from DNS\_msdcs.ourdomain\gc\.
>
> Apparently not, adding new DCs failed with "WERR_DS_DATABASE_ERROR".
> `samba-tool dbcheck --fix` solved that.
>
> With that out of the way, the join seemed to work.
>
> • DNS records as per
> https://wiki.samba.org/index.php/Verifying_and_Creating_a_DC_DNS_Record
> were missing, after adding them, the replication is working as well.
>
> • File server verified to work, including authentication.
>
> • However, the server is still missing from the following DNS records:
>
> – Domain [host -t A ad.tao.at.]
> – LDAP SRV records [host -t SRV _ldap._tcp.ad.tao.at.]
> – KRB5 SRV records [host -t SRV _kerberos._tcp.ad.tao.at.]
> – …and all the others I can find in the MMC DNS snap-in (_gc,
> _kpasswd, etc. pp.)
>
> • Kerberos works, but I'm not sure it's actually using the new server,
> given the DNS issues.
>
>
> Can I just add the SRV records manually? Should this be documented in
> the wiki?
Try running 'samba_dnsupdate --use-samba-tool' on the new DC
Rowland
More information about the samba
mailing list