[Samba] Problems with NIS Server on Samba 4

Marcio Demetrio Bacci marciobacci at gmail.com
Tue Aug 20 01:59:03 UTC 2019 

Hi,

I performed the procedures below on Samba4-DC1 (Master) and apparently
everything went fine.

/etc/init.d/samba-ad-dc stop

sed -i -e 's/${DOMAINDN}/DC=empresa,DC=com,DC=br/g' \
         -e 's/${NETBIOSNAME}/SAMBA4-DC1/g' \
         -e 's/${NISDOMAIN}/empresa/g' \
         /tmp/ypServ30.ldif


root at samba4-dc1:/tmp# ldbmodify -H /var/lib/samba/private/sam.ldb
/tmp/ypServ30.ldif --option="dsdb:schema update allowed"=true
Modified 55 records successfully

/etc/init.d/samba-ad-dc start

ldbsearch -H /var/lib/samba/private/sam.ldb -s base -b
CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=empresa,DC=com,DC=br cn
# record 1
dn:
CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=empresa,DC=com,DC=br
cn: ypservers

# returned 1 records
# 1 entries
# 0 referrals


However I noticed that an error arose in replication with Samba4-DC2, as
follows:

samba-tool drs showrepl
...
CN=Schema,CN=Configuration,DC=empresa,DC=com,DC=br
        Default-First-Site-Name\SAMBA4-DC2 via RPC
                DSA object GUID: 45b5b534-9bcc-483c-8f6d-5bbc37dc35e9
                Last attempt @ Mon Aug 19 22:28:59 2019 -03 failed, result
64 (WERR_NETNAME_DELETED)
                1 consecutive failure(s).
                Last success @ Mon Aug 19 22:07:23 2019 -03


How can I solve this problem?


Regards,

Márcio Bacci

Em seg, 19 de ago de 2019 às 18:05, Rowland penny via samba <
samba at lists.samba.org> escreveu:

> On 19/08/2019 21:45, Marcio Demetrio Bacci wrote:
> > Hi,
> >
> > >Ah, I think I see the problem, If I remember correctly, you joined the
> > >the Samba DC to a Windows DC and if you didn't have IDMU installed on
> > >the Windows DC, you wouldn't get the required objects in AD created on
> > >the Samba DC either.
> >
> > Really, IDMU was not installed.
> >
> >
> > There is the file ypServ30.ldif
> > ls /usr/share/samba/setup/
> > ...
> >  ypServ30.ldif
> >
> > But, I believe the extension is not enabled:
> >
> > ldbsearch -H /var/lib/samba/private/sam.ldb -s base -b
> >
> CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=empresa,DC=com,DC=br
> > cn
> > search error - No such Base DN:
> > CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=empresa,DC=com,DC=br
> >
> >
> > This way, Do I need to install NIS (apt-get install nis) or only
> > Replace the variables in LDIF file with the domain distinguished name
> > (DN), NetBIOS name, and the NIS domain ?
>
> No, yes, yes and sort of ;-)
>
> No, you do not install NIS
>
> Yes, you replace '${DOMAINDN}' with 'DC=empresa,DC=com,DC=br'
>
> Yes, you replace '${NETBIOSNAME}' with the DCs short hostname in uppercase
>
> You replace '${NISDOMAIN}' (that is a bad name) with the workgroup name
> in lowercase.
>
> ypServ30.ldif is what installing IDMU on a Windows adds to AD and is
> normally only added to Samba if you provision a new domain with
> '--use-rfc2307'
>
> Rowland
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>

More information about the samba mailing list