[Samba] Setup a Samba AD DC as an additional DC
Rowland Penny
rpenny at samba.org
Mon Nov 26 17:45:13 UTC 2018
OK, I have been trying to help Barry get Samba to join to a Windows
domain as a DC and we seem to have chased it down to this:
ldb_wrap open of secrets.ldb
Could not find machine account in secrets database: Failed to fetch
machine account password for XXXXX from both secrets.ldb (Could not
find entry to match filter:
'(&(flatname=XXXXX)(objectclass=primaryDomain))' base: 'cn=Primary
Domains': No such object: dsdb_search
at ../source4/dsdb/common/util.c:4702) and
from /var/lib/samba/private/secrets.tdb:
NT_STATUS_CANT_ACCESS_DOMAIN_INFO ERROR(runtime): uncaught exception -
(9005, 'WERR_DNS_ERROR_RCODE_REFUSED') File
"/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line 177,
in _run return self.run(*args, **kwargs) File
"/usr/lib/python2.7/dist-packages/samba/netcmd/domain.py", line 716, in
run backend_store=backend_store) File
"/usr/lib/python2.7/dist-packages/samba/join.py", line 1500, in join_DC
ctx.do_join() File "/usr/lib/python2.7/dist-packages/samba/join.py",
line 1405, in do_join ctx.join_add_dns_records() File
"/usr/lib/python2.7/dist-packages/samba/join.py", line 1110, in
join_add_dns_records del_rec_buf)
He has examined the secrets.ldb and it doesn't contain the ' dn:
flatname=XXXXX,cn=Primary Domains' object, even if he deletes it, it
gets recreated without that object.
I have run out of ideas, I even joined a Samba machine to a
2012 DC (2008 function level) without problem, anybody got any ideas ?
Rowland
More information about the samba
mailing list