[Samba] setting up a new ADS infrastructure

[Stefan Froehlich]

On Sun, Jun 23, 2019 at 01:53:43PM +0100, Rowland penny via samba wrote:
> You have a DC in the 'synth.intern' dns domain, yet the Kerberos Realm is
> 'SYNTHESIS.SYNTH.INTERN', it should be 'SYNTH.INTERN'
> 
> The Unix domain member is in the 'synthesis.synth.intern' dns domain and its
> Kerberos Realm is 'SYNTHESIS.SYNTH.INTERN'
> 
> I am sorry, but you must fix this before anything else has a
> chance of working, all computers must be in the same dns domain
> and the Realm must be the dns domain in uppercase.

No need to be sorry - most likely I'll the whole setup from scratch.
But just to be sure and to avoid new mistakes, after re-reading the
samba wiki:

I understand that they use the same SAMDOM.EXAMPLE.COM as DNS *and*
Windows domain which is (for legacy reasons and for a smoother
transition) something I'd rather like to avoid.

There is the existing DNS domain synth.intern (driven by bind and
generally in a rather good shape) and I want to create the new AD
domain SYNTHESIS *below* and independent from that.  That's why I
created an NS record for synthesis.synth.intern delegating it to the
DC and proceeded from there following the wiki with my AD DNS domain
being SYNTHESIS.SYNTH.INTERN.

Is this possible at all or am I just begging for trouble with such a
setup?

Bye,
Stefan

-- 
Stefan - Das sollten wir vielleicht einmal vertiefen!
Sloganizer, https://www.poetron-zone.de/