Rowland Penny rpenny at samba.org
Thu Aug 10 20:43:14 UTC 2017

On Thu, 10 Aug 2017 15:43:10 -0400 (CDT)
Ing. Luis Felipe Domínguez Vega via samba <samba at lists.samba.org> wrote:

> Hello, a short history, I am using samba 4 with Debian 9 from the
> repository, 2 days ago the server was broken, but I was copy all
> the /var/lib/samba directory to a safe place, then I was installed a
> new server with the same Debian and samba from repository, and
> stopped smbd, nmbd and winbind, unmask samba-ad-dc and finally copied
> all the directory from the old server to the new server and started
> the samba, all works fine, the bind is integrated with samba_dlz,
> etc. But now when i go to join a Windows 7 PC to the domain show an
> error with "Internal Error". Inside the AD server i put this command

Did you use exactly the same FQDN and ipaddress for the new computer ?

>  tls enabled       = yes
>  tls certfile      = /var/lib/samba/private/tls/dc-cert.pem
>  tls keyfile       = /var/lib/samba/private/tls/secure/dc-privkey.pem
>  tls cafile        = /var/lib/samba/private/tls/cacert.pem
>  tls crlfile       = /var/lib/samba/private/tls/mtz.desoft.cu.crl
>  tls dhparams file = /var/lib/samba/private/tls/dc-dhparams.pem

You could try recreating the cert files.


More information about the samba mailing list