[Samba] Is possible use BIND9 as DNS Back End on a new Samba DC?

Wed Apr 17 18:02:04 UTC 2019

Rowland,

My configure line is ./configure --enable-debug --enable-selftest
--with-systemd.

A hour ago, I ignored the inconsistency that I reported in the first e-mail
of this topic and I proceeded as described at topic "Joining a Samba DC to
an Existing Active Directory" and I joined new DC with command:

samba-tool domain join mydomain.com DC -U"MYDOMAIN\administrator"
--dns-backend=BIND9_DLZ

I've looked the output command and new DC seemly joined to mydomain.com.
I've checked out /usr/local/samba/bind-dns/named.conf and, now, there is
this file. But, when I've added 'include
"/usr/local/samba/bind-dns/named.con"' into my BIND named.conf file, the
named service has not started.

I've got the following journalctl -xe output when it said
"/etc/named.conf:59: open: /usr/local/samba/bind-dns/named.conf: permission
denied". The file exists and I've tired to change permissions of this file
to own to root:named, but journalctl -xe still shows the same error.

[root at newdc ~]# journalctl -xe
Apr 17 14:11:19 genos named[5041]: built with
'--build=x86_64-redhat-linux-gnu' '--host=x86_64-redhat-linux-gnu'
'--program-prefi
Apr 17 14:11:19 genos named[5041]:
----------------------------------------------------
Apr 17 14:11:19 genos named[5041]: BIND 9 is maintained by Internet Systems
Consortium,
Apr 17 14:11:19 genos named[5041]: Inc. (ISC), a non-profit 501(c)(3)
public-benefit
Apr 17 14:11:19 genos named[5041]: corporation.  Support and training for
BIND 9 are
Apr 17 14:11:19 genos named[5041]: available at https://www.isc.org/support
Apr 17 14:11:19 genos named[5041]:
----------------------------------------------------
Apr 17 14:11:19 genos named[5041]: adjusted limit on open files from 4096
to 1048576
Apr 17 14:11:19 genos named[5041]: found 2 CPUs, using 2 worker threads
Apr 17 14:11:19 genos named[5041]: using 2 UDP listeners per interface
Apr 17 14:11:19 genos named[5041]: using up to 21000 sockets
Apr 17 14:11:19 genos named[5041]: loading configuration from
'/etc/named.conf'
Apr 17 14:11:19 genos named[5041]: /etc/named.conf:59: open:
/usr/local/samba/bind-dns/named.conf: permission denied
Apr 17 14:11:19 genos named[5041]: loading configuration: permission denied
Apr 17 14:11:19 genos named[5041]: exiting (due to fatal error)
Apr 17 14:11:19 genos systemd[1]: named.service: control process exited,
code=exited status=1
Apr 17 14:11:19 genos systemd[1]: Failed to start Berkeley Internet Name
Domain (DNS).
-- Subject: Unit named.service has failed

--
Igor Sousa

Em qua, 17 de abr de 2019 às 12:45, Rowland Penny via samba <
samba at lists.samba.org> escreveu:

> On Wed, 17 Apr 2019 11:00:49 -0300
> Igor Sousa <igorvolt at gmail.com> wrote:
>
> > I'm sorry to I forgot answer appropriate.
> >
> > I'm running CentOS 7 with all packages upgraded. I've followed
> > instruction in
> >
> https://wiki.samba.org/index.php/Package_Dependencies_Required_to_Build_Samba
> > with
> > some need modifications (yum line is bellow this text) and I've
> > installed python 3.4. I've installed Bind9 from package manager where
> > Bind9 version is 9.9.4.
> >
> > YUM command to install packages dependencies required to build samba:
> > yum install attr bind-utils docbook-style-xsl gcc gdb krb5-workstation
> > libsemanage-python libxslt perl perl-ExtUtils-MakeMaker
> > perl-Parse-Yapp perl-Test-Base pkgconfig policycoreutils-python
> > python2-crypto gnutls-devel libattr-devel keyutils-libs-devel
> > libacl-devel libaio-devel libblkid-devel libxml2-devel openldap-devel
> > pam-devel popt-devel python-devel readline-devel zlib-devel
> > systemd-devel lmdb-devel jansson-devel gpgme-devel pygpgme
> > libarchive-devel
>
> There doesn't seem to be anything missing there (though I could be
> wrong, I normally use Devuan), So what was your 'configure' line ?
>
> Rowland
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>