[Samba] NT_STATUS_INTERNAL_ERROR and cannot join windows 7 samba4-ad-dc fresh install, get NT_STATUS_INTERNAL_ERROR

Rowland Penny rpenny at samba.org
Mon Aug 14 14:17:14 UTC 2017 

On Mon, 14 Aug 2017 09:34:57 -0400 (CDT)
Ing. Luis Felipe Domínguez Vega <luis.dominguez at mtz.desoft.cu> wrote:

> Sorry, in weekends I don't have email and the internet neither. Yes,
> I have copied the smb.conf gggg. Well the files are. Ahhh something
> extrange, the NTP server is working only with native NTP clients, if
> i use w32tm /resync in windows clients don't update the time, the
> server recive the request and send a response, but dont synchronize,
> but this if for later, now is very important the Domain Join action.
> 

Can you try the following files instead of yours, they are based on my
working files and info gleaned from yours:

/etc/resolv.conf

search mtz.desoft.cu
nameserver 192.168.0.1

/etc/krb5.conf

[libdefaults]
    default_realm = MTZ.DESOFT.CU
	dns_lookup_realm = false
	dns_lookup_kdc = true

/etc/bind/named.conf.options

options {
        directory "/var/cache/bind";
        version none;
        dump-file "/var/cache/bind/data/cache_dump.db";
        statistics-file "/var/cache/bind/data/named_stats.txt";
        notify no;
        empty-zones-enable no;
        allow-query     { 192.168.0.0/24; 10.11.0.0/24; 127.0.0.1; };
        allow-recursion { 192.168.0.0/24; 10.11.0.0/24; 127.0.0.1; };
        forwarders { 192.168.0.253; 8.8.8.8; };
        allow-transfer  { none; };
        dnssec-validation no;
        dnssec-enable no;
        listen-on port 53 { 127.0.0.1; 10.11.0.1; 192.168.0.1; };
        listen-on-v6 { none; };
        querylog yes;
        tkey-gssapi-keytab "/var/lib/samba/private/dns.keytab";
};

logging {
        channel xfer-log {
                file "/var/log/named.log";
                print-category yes;
                print-severity yes;
                severity info;
        };

        category xfer-in        { xfer-log; };
        category xfer-out       { xfer-log; };
        category notify         { xfer-log; };
};

statistics-channels {
        inet 127.0.0.1 port 8888 allow { 127.0.0.1; };
};

BIG NOTE: I only have the first part in my named.conf.options

/etc/bind/named.conf.local

//
// Do any local configuration here
//

// Consider adding the 1918 zones here, if they are not used in your
// organization
//include "/etc/bind/zones.rfc1918";
// adding the Samba dlopen ( Bind DLZ ) module
include "/var/lib/samba/private/named.conf";

ANOTHER NOTE: check that the path above is correct for your setup, it
should be, but better safe than sorry ;-)

As you are now having problems with ntp, have you read this wiki page:

https://wiki.samba.org/index.php/Time_Synchronisation

Rowland

More information about the samba mailing list