[Samba] Setup a Samba AD DC as an additional DC
Barry D. Adkins
Barry at daram.com
Sat Dec 1 13:17:37 UTC 2018
Same problem. Can't join as AD DC. Secrets file missing the Machine Secret:
If the problem is MS Exchange, then I'll have to hold off until I can dump Exchange and get Kopano or something else.
Still getting this:
ldb_wrap open of secrets.ldb
Could not find machine account in secrets database: Failed to fetch machine account
password for DARAM from both secrets.ldb (Could not find entry to match
filter: '(&(flatname=DARAM)(objectclass=primaryDomain))' base: 'cn=Primary Domains':
No such object: dsdb_search at ../source4/dsdb/common/util.c:4705) and from
Partition[DC=ForestDnsZones,DC=daram,DC=com] objects[211/211] linked_values[0/0]
Exop on[CN=RID Manager$,CN=System,DC=daram,DC=com] objects linked_values
Committing SAM database
Adding 1 remote DNS records for HOUDCU01.daram.com
Adding DNS A record HOUDCU01.daram.com for IPv4 IP: 22.214.171.124
Adding DNS CNAME record 96198a82-8847-4a60-ae00-bfbbb0e78bd4._msdcs.daram.com for HOUDCU01.daram.com
Join failed - cleaning up
Deleted CN=RID Set,CN=HOUDCU01,OU=Domain Controllers,DC=daram,DC=com
Deleted CN=HOUDCU01,OU=Domain Controllers,DC=daram,DC=com
Deleted CN=NTDS Settings,CN=HOUDCU01,CN=Servers,CN=Houston,CN=Sites,CN=Configuration,DC=daram,DC=com
ERROR(runtime): uncaught exception - (9601, 'WERR_DNS_ERROR_ZONE_DOES_NOT_EXIST')
File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line 177, in _run
return self.run(*args, **kwargs)
File "/usr/lib/python2.7/dist-packages/samba/netcmd/domain.py", line 716, in run
File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1500, in join_DC
File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1405, in do_join
File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1164, in join_add_dns_records
>We know about exchange might be a problem, the others i dont know..
>Check the windows schema levels.
>You could try a clean setup as shown by my howto.
>Before you install setup ip and hostname in the windows DNS for the linux server.
>Make sure you use a name thats never used before, just to be sure of no side effects.
>Then follow this to the letter. ( so use bind9_dlz )
>Line 31, use the windows DC's ip's
>Line 47, use the same time server as the windows DC's.
>Until line 259, the provisioning line, change that to join.
>And proceed with the steps.
> -----Oorspronkelijk bericht-----
> Onderwerp: [Samba] Setup a Samba AD DC as an additional DC
> > 2008 Member - MS Exchange 2010
> >BOING!!! ^^^^^^^^^^^
> >From my knowledge, you cannot use exchange with a Samba DC.
More information about the samba