[Samba] Made a join with a netbios name, which already existed, now replication errors

thom_schu at gmx.de thom_schu at gmx.de
Fri Jul 28 15:26:39 UTC 2017 

Hi there,
I made a big mistake !
We have 3 domain controllers, samba1, samba2 and samba3, all of them running samba "Version 4.3.11 (SerNet)"
samba1 owns all fsmo-roles.
I installed a 4th one, samba4 (Version 4.6.6 - SerNet), copied the smb.conf from samba3, but forgot to adapt the parameters.
 
[global]
        workgroup = DOMAIN
        realm = DOMAIN.UNIVERSITY.DE
        netbios name = SAMBA3
        interfaces = 127.0.0.1, ip_from_samba3                                                                             
        bind interfaces only = Yes
        server role = active directory domain controller
        dns forwarder = ip
        idmap_ldb:use rfc2307 = yes
        ldap server require strong auth = no
        time server = yes
       
[netlogon]
        path = /var/lib/samba/sysvol/domain.university.de/scripts
        read only = No
[sysvol]
        path = /var/lib/samba/sysvol
        read only = No
 
I joined samba4 with the smb.conf from the samba3, means same netbios-name and interface-ip-address.
Then I ckecked the replication of samba4, but it didnt work. (at that time I didnt know why yet)

Later I discovered my wrong smb.conf, corrected the entries and started samba4 again.
Now samba4 seems to replicate, but still as samba3.

The replication of samba3 doesnt work anymore, there is the following error:


Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for ncacn_ip_tcp:111.222.333.3[1024,seal,target_hostname=samba3.domain.university.de,abstract_syntax=e3514235-4b06-11d1-ab04-00c04fc2dcd2/0x00000004,localaddress=111.222.333.3] NT_STATUS_LOGON_FAILURE
ERROR(<class 'samba.drs_utils.drsException'>): DRS connection to samba3.domain.university.de failed - drsException: DRS connection to samba3.domain.university.de failed: (-1073741715, 'Logon failure')
  File "/usr/lib64/python2.7/site-packages/samba/netcmd/drs.py", line 39, in drsuapi_connect
    (ctx.drsuapi, ctx.drsuapi_handle, ctx.bind_supported_extensions) = drs_utils.drsuapi_connect(ctx.server, ctx.lp, ctx.creds)
  File "/usr/lib64/python2.7/site-packages/samba/drs_utils.py", line 54, in drsuapi_connect
    raise drsException("DRS connection to %s failed: %s" % (server, e))
 
It looks like samba4 overlaps samba3 because of the same netbios-name I gave.

The system knows 3 domain controller, samba1, samba2 and samba3. But for replication it takes samba4 as samba3.

How can I correct that ? I tried to demote samba4 (which knows the system as samba3). But this didnt work, there was an error like "out of index".
samba1 and samba2 work correct as far as I can see - can the system become instable ?
 
 
 
Thanks in advance

More information about the samba mailing list