[Samba] Why are ForeignSecurityPrincipals and Managed Service Accounts empty with no entries?

Rowland penny rpenny at samba.org
Wed Feb 19 09:37:03 UTC 2020


On 19/02/2020 00:07, Turritopsis Dohrnii Teo En Ming wrote:
> Hi Rowland,
>
> This is my full /etc/named.conf:
>
Try it like this:


options {
     directory "/var/named";
     notify no;
     empty-zones-enable no;
     allow-query { 127.0.0.1; 192.168.0.0/24; };
     allow-recursion { 127.0.0.1/32; 192.168.0.0/24; };
     forwarders { 8.8.8.8; 8.8.4.4; };
     allow-transfer { none; };
     dnssec-validation no;
     dnssec-enable no;
     dnssec-lookaside no;
     listen-on port 53 { any; };
     listen-on-v6 port 53 { any; };
     pid-file "/run/named/named.pid";
     tkey-gssapi-keytab "/usr/local/samba/bind-dns/dns.keytab";
     minimal-responses yes;
};

logging {
         channel default_debug {
                 file "data/named.run";
                 severity dynamic;
         };
};

zone "." IN {
type hint;
file "named.ca";
};

include "/etc/named.rfc1912.zones";
include "/usr/local/samba/bind-dns/named.conf";


Replace '192.168.0.0' with your networks address.

You may also want to change the forwarders.


Rowland





More information about the samba mailing list