[Samba] SAMBA failed join domain DC

denis.shigapov denis.shigapov at stroylandiya.ru
Mon Feb 19 11:28:37 UTC 2018 

Yes, DNS runnig on Windows Server 2008R2(srv-dc01.example.ru)
DNS integrated to AD
in the domain management snap-in is created RODC,
is it possible to translate it into a normal DC?
What are the zones to check, example.ru?

dig example.ru

; <<>> DiG 9.9.4-RedHat-9.9.4-51.el7_4.2 <<>> example.ru
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42712
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 63, AUTHORITY: 0, ADDITIONAL:
1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4000
;; QUESTION SECTION:
;example.ru.                   IN      A

;; ANSWER SECTION:
example.ru.            600     IN      A       10.2.1.4
example.ru.            600     IN      A       10.2.1.5
example.ru.            600     IN      A       10.3.1.4
.......
;; Query time: 3 msec
;; SERVER: 192.168.55.1#53(192.168.55.1)
;; WHEN: Пн фев 19 16:07:15 +05 2018
;; MSG SIZE  rcvd: 1048


[root at srv-site2-dc1 x86_64]# nslookup srv-dc01
Server:         192.168.55.1
Address:        192.168.55.1#53

Name:   srv-dc01.example.ru
Address: 192.168.55.2

[root at srv-site2-dc1 x86_64]# nslookup srv-dc01.example.ru
Server:         192.168.55.1
Address:        192.168.55.1#53

Name:   srv-dc01.example.ru
Address: 192.168.55.2

[root at srv-site2-dc1 x86_64]# nslookup srv-
dc02.example.ru                                                        
                                                             
Server:         192.168.55.1
Address:        192.168.55.1#53

Name:   srv-dc02.example.ru
Address: 192.168.55.1

[root at srv-site2-dc1 x86_64]# nslookup srv-dc02
Server:         192.168.55.1
Address:        192.168.55.1#53

Name:   srv-dc02.example.ru
Address: 192.168.55.1


В Пн, 19/02/2018 в 10:47 +0000, Rowland Penny via samba пишет:
> > username=vas.lah --password=password --realm=EXAMPLE.RU --
> > site=SITE2
> 
> That's better ;-)
> 
> > 
> > 
> > srv-dc01.example.ru - windows server 2008
> 
> Should work.
> 
> > 
> > netdom query fsmo
> 
> Only problem with that command is, it doesn't show the dns FSMO
> roles,
> even if they are there.
> 
> Simple question: Is a dns server running on the windows server 2008 ?
> 
> If it is, have you checked if the dns zones exist in AD ?
> 
> If they do, try pre-creating the new DC in AD.

More information about the samba mailing list