[Samba] Internal DNS migrate to Bind9_DLZ

Mon Jul 30 13:50:48 UTC 2018

Is the file (/var/lib/samba/bind-dns/named.conf)  and the directory
readable by named?

We also have the packages vom Sernet and after a fresh install named is
not able to read the file.

Regards

Christian

Am 30.07.2018 um 15:42 schrieb Eben Victor via samba:
> Hello Rowland,
> 
> selinux has been disabled, I also ran th follow
> 
> # systemctl stop sernet-samba-ad
> # samba_upgradedns --dns-backend=BIND9_DLZ
> # named -d3 -f -g -u named
> 
> Which then still fails, see below smb.conf
> 
> [global]
>         workgroup = DOMAIN
>         realm = DOMAIN.CORP
>         netbios name = PDC
>         server role = active directory domain controller
>         idmap_ldb:use rfc2307 = yes
>         idmap config * : range = 3000-7999
>         winbind offline logon = Yes
>         guest account = nobody
>         restrict anonymous = 1
>         winbind max clients = 2000
>         log level = 2
>         ldap server require strong auth = no
>         ntlm auth = mschapv2-and-ntlmv2-only
>         template homedir = /home/%D/%U
>         template shell = /bin/bash
>         interfaces = lo ens192
>         bind interfaces only = yes
>        server services = -dns
>         max xmit = 65535
>         dead time = 15
> 
> # Disable printer share
>         load printers = No
>         printcap name = /dev/null
>         disable spoolss = Yes
> 
> # Enable domain TLS
>         tls enabled  = yes
>         tls keyfile  = tls/key.pem
>         tls certfile = tls/cert.pem
>         tls cafile   = tls/ca.pem
> 
> [netlogon]
>         path = /var/lib/samba/sysvol/domain.corp/scripts
>         read only = Yes
> 
> [sysvol]
>         path = /var/lib/samba/sysvol
>         read only = Yes
> 
> 
> On Mon, Jul 30, 2018 at 11:43 AM Rowland Penny via samba <
> samba at lists.samba.org> wrote:
> 
>> On Mon, 30 Jul 2018 11:25:11 +0200
>> Eben Victor <eben.victor at gmail.com> wrote:
>>
>>> Yes I have added "server services = -dns"  to my smb.conf file and
>>> also removed "dns forwarder ="
>>> I've done the same setup but on Samba 4.7.7, RHEL6, named 9.8 and this
>>> works perfect.
>>>
>>
>> OK, but have you run 'samba_upgradedns' ?
>>
>> If you have, then all that seems to be left is selinux, is this getting
>> in the way ?
>>
>> Rowland
>>
>>
>>
>> --
>> To unsubscribe from this list go to the following URL and read the
>> instructions:  https://lists.samba.org/mailman/options/samba
>>
> 
> 

-- 
Dr. Christian Naumer
Research Scientist
Plattform-Koordinator Bioprozesstechnik

B.R.A.I.N Aktiengesellschaft
Darmstaedter Str. 34-36, D-64673 Zwingenberg
e-mail cn at brain-biotech.de, homepage www.brain-biotech.de
fon +49-6251-9331-30  /   fax +49-6251-9331-11

Sitz der Gesellschaft: Zwingenberg/Bergstrasse
Registergericht AG Darmstadt, HRB 24758
Vorstand: Dr. Juergen Eck (Vorsitzender), Frank Goebel
Aufsichtsratsvorsitzender: Dr. Ludger Mueller