[Samba] Samba 4.7.2 + bind on Fedora 27: samba_dlz: spnego update failed
Rowland Penny
rpenny at samba.org
Mon Dec 4 12:07:48 UTC 2017
On Mon, 04 Dec 2017 12:56:19 +0100
Dario Lesca via samba <samba at lists.samba.org> wrote:
> Il giorno lun, 04/12/2017 alle 11.29 +0000, Rowland Penny via samba ha
> scritto:
> > Try changing the 'options' of named.conf to this:
>
> Thanks Rowland
>
> Integrated your suggested changes and restart samba and named
>
> Now my named.conf is this[1], but none is change:
> [ root at server-addc ~]# samba_dnsupdate --all-names
> --fail-immediately update failed: REFUSED
>
> dic 04 12:46:43 server-addc.dogma-to.loc named[8474]: samba_dlz:
> spnego update failed dic 04 12:46:43 server-addc.dogma-to.loc
> named[8474]: client @0x7fc9310a5e80 192.168.41.1#60981/key
> SERVER-ADDC\$\@DOGMA-TO.LOC: updating zone 'dogma-to.loc/NONE':
> update failed: rejected by secure update (REFUSED)
>
> I have also try this:
>
> [ root at server-addc ~]# samba_dnsupdate --all-names
> --use-samba-tool --fail-immediately ERROR(runtime): uncaught
> exception - (9711, 'WERR_DNS_ERROR_RECORD_ALREADY_EXISTS') File
> "/usr/lib64/python2.7/site-packages/samba/netcmd/__init__.py", line
> 176, in _run return self.run(*args, **kwargs) File
> "/usr/lib64/python2.7/site-packages/samba/netcmd/dns.py", line 940,
> in run raise e
>
Is the DHCP server updating the records for you ?
If so, you need to stop the windows clients trying to update their own
records, they don't own them.
Rowland
More information about the samba
mailing list