[Samba] Error joining Samba 4.7.4 DC to existing Win2008R2 domain

Andrew Bartlett abartlet at samba.org
Fri Mar 2 08:28:37 UTC 2018

On Fri, 2018-03-02 at 09:19 +0100, Ing. Claudio Nicora via samba wrote:
> I'm still focusing on log lines after the failure:
> --- no SRVAD-OLD address in /etc/hosts ---
> Join failed - cleaning up
> ldb_wrap open of secrets.ldb
> Could not find machine account in secrets database: Failed to fetch 
> machine account password for SAMDOM from both secrets.ldb (Could not 
> find entry to match filter: 
> '(&(flatname=SAMDOM)(objectclass=primaryDomain))' base: 'cn=Primary 
> Domains': No such object: dsdb_search at 
> ../source4/dsdb/common/util.c:4636) and from 
> /var/lib/samba/private/secrets.tdb: NT_STATUS_CANT_ACCESS_DOMAIN_INFO
> ---

This isn't it.  The things after the failure are not the issue, they
are happening in the unwind.  

You can see the real failure in the backtrace, where it fails to find
the records using our DNS client library for LDAP (yes, a very strange

As Garming said, the issue is that Samba can't find the DNS records on
your AD DC over LDAP, having just added them via RPC.

This code is a bit tricky, and I thought I had it right, but clearly
that isn't the case.  Garming asked you to see if you could locate
where the records got put the records by hand.  


Andrew Bartlett

Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

More information about the samba mailing list