[Samba] Dynamic DNS tips? (Samba 4.8.x + Bind9_DLZ)

Rowland Penny rpenny at samba.org
Wed Jan 2 08:28:24 UTC 2019


On Tue, 1 Jan 2019 18:29:01 -0500
Nico Kadel-Garcia <nkadel at gmail.com> wrote:

> On Tue, Jan 1, 2019 at 10:08 AM Rowland Penny via samba
> <samba at lists.samba.org> wrote:
> >
> > On Tue, 1 Jan 2019 09:50:45 -0500
> > Nico Kadel-Garcia <nkadel at gmail.com> wrote:
> >
> > > > If you want your clients to update their own records, then let
> > > > them, but be aware that any Unix clients will not even try.
> > >
> > > Well, they can try. It takes some configuration and thought to do
> > > so reliably and securely.
> >
> > Just how do you configure the dhcp client software to upgrade the
> > dns records in AD ?
> >
> > Rowland
> 
> I can't discuss the most recent time I dealt with this. The time
> before *that*, I walked my way through Red Hat's notes at
> https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/windows_integration_guide/sssd-dyndns
> .Doing it through sssd is... well it's overkill. The time before
> *that*, I got the AD administrator to allow "non-secure DNS updates"
> that were compatible with the RHEL 5 systems I was dealing with. That
> wasn't ideal, but I was having enough difficulty negotiating
> configurations with the AD administrators that I could only achieve so
> much.

That isn't configuring the dhcp client ;-)

I wasn't aware that sssd could this, but just running sssd to update
dns records is overkill, you do not need it for anything else.

Rowland



More information about the samba mailing list