[Samba] Samba AD - Different IP than the existing one assigned

L.P.H. van Belle belle at bazuin.nl
Fri Feb 28 09:30:28 UTC 2020 

Try this. 
 
    systemctl stop smbd nmbd winbind
    systemctl disable smbd nmbd winbind
    systemctl mask smbd nmbd winbind

    systemctl unmask samba-ad-dc
    systemctl enable samba-ad-dc
    systemctl start samba-ad-dc 

Reboot server. 
Check again. 


> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces at lists.samba.org] Namens 
> Lionel Monchecourt via samba
> Verzonden: donderdag 27 februari 2020 17:39
> Aan: samba at lists.samba.org
> Onderwerp: Re: [Samba] Samba AD - Different IP than the 
> existing one assigned
> 
> ???Ok, so now :
> 
> 
> 
>  
> 
>  
> 
> Content of  /etc/hosts
> 
>  
> 
> 127.0.0.1   localhost
> 
> 172.31.6.15 adc1.transmitcorp.com adc1
> 
> 
> 
> 
> Now, stop samba. 
> 
> Cleanup current data and now setup samba and provision again. 
> cleanup /var/lib/samba /var/cache/samba 
> Rename smb.conf 
> 
> Then provision again, the base is wrong so the AD-DB has wrong data.
> >
> 
> > I removed smb.conf from /etc/samba
> 
> > un the interactive provisioning : 
> 
> samba-tool domain provision --use-rfc2307 --interactive
> 
> Realm [TRANSMITCORP.COM]:
> 
> Domain [TRANSMITCORP]:
> 
> Server Role (dc, member, standalone) [dc]:
> 
> DNS backend (SAMBA_INTERNAL, BIND9_FLATFILE, BIND9_DLZ, NONE) 
> [SAMBA_INTERNAL]:
> 
> DNS forwarder IP address (write 'none' to disable forwarding) 
> [172.31.6.15]: 8.8.8.8
> 
> Administrator password:
> 
> Retype password:
> 
> Looking up IPv4 addresses
> 
> Looking up IPv6 addresses
> 
> No IPv6 address will be assigned
> 
> Setting up secrets.ldb
> 
> Setting up the registry
> 
> Setting up the privileges database
> 
> Setting up idmap db
> 
> Setting up SAM db
> 
> Setting up sam.ldb partitions and settings
> 
> Setting up sam.ldb rootDSE
> 
> Pre-loading the Samba 4 and AD schema
> 
> Unable to determine the DomainSID, can not enforce uniqueness 
> constraint on local domainSIDs
> 
>  
> 
> Adding DomainDN: DC=transmitcorp,DC=com
> 
> Adding configuration container
> 
> Setting up sam.ldb schema
> 
> Setting up sam.ldb configuration data
> 
> Setting up display specifiers
> 
> Modifying display specifiers and extended rights
> 
> Adding users container
> 
> Modifying users container
> 
> Adding computers container
> 
> Modifying computers container
> 
> Setting up sam.ldb data
> 
> Setting up well known security principals
> 
> Setting up sam.ldb users and groups
> 
> Setting up self join
> 
> Adding DNS accounts
> 
> Creating CN=MicrosoftDNS,CN=System,DC=transmitcorp,DC=com
> 
> Creating DomainDnsZones and ForestDnsZones partitions
> 
> Populating DomainDnsZones and ForestDnsZones partitions
> 
> Setting up sam.ldb rootDSE marking as synchronized
> 
> Fixing provision GUIDs
> 
> A Kerberos configuration suitable for Samba AD has been 
> generated at /var/lib/samba/private/krb5.conf
> 
> Merge the contents of this file with your system krb5.conf or 
> replace it with this one. Do not create a symlink!
> 
> Setting up fake yp server settings
> 
> Once the above files are installed, your Samba AD server will 
> be ready to use
> 
> Server Role:           active directory domain controller
> 
> Hostname:              adc1
> 
> NetBIOS Domain:        TRANSMITCORP
> 
> DNS Domain:            transmitcorp.com
> 
> DOMAIN SID:            S-1-5-21-635820313-3681016748-1899333284
> 
>  
> 
> As mentioned, made the link to new brb5.conf file : 
> 
> root at TransmitCorp/etc# mv /etc/krb5.conf /etc/krb5.conf.initial
> 
> root at TransmitCorp/etc# ln -s /var/lib/samba/private/krb5.conf /etc/
> 
>  
> 
> try to start the service with 
> 
> service samba-ad-dc start
> 
> and get
> 
>  
> 
> Job for samba-ad-dc.service failed because the control 
> process exited with error code.
> 
> See "systemctl status samba-ad-dc.service" and "journalctl 
> -xe" for details.
> 
>  
> 
> With 
> 
> root at TransmitCorp~# service samba-ad-dc start
> 
> Job for samba-ad-dc.service failed because the control 
> process exited with error code.
> 
> See "systemctl status samba-ad-dc.service" and "journalctl 
> -xe" for details.
> 
> root at TransmitCorp~# ^C
> 
> root at TransmitCorp~# more /tmpservice samba-ad-dc status
> 
> ??? samba-ad-dc.service - Samba AD Daemon
> 
>    Loaded: loaded (/lib/systemd/system/samba-ad-dc.service; 
> disabled; vendor preset: enabled)
> 
>    Active: failed (Result: exit-code) since Thu 2020-02-27 
> 16:35:18 UTC; 2min 22s ago
> 
>      Docs: man:samba(8)
> 
>            man:samba(7)
> 
>            man:smb.conf(5)
> 
>   Process: 17808 ExecStart=/usr/sbin/samba --foreground 
> --no-process-group $SAMBAOPTIONS (code=exited, status=1/FAILURE)
> 
> Main PID: 17808 (code=exited, status=1/FAILURE)
> 
>  
> 
> Feb 27 16:35:18 adc1 samba[17837]: task[ldapsrv][17837]: 
> [2020/02/27 16:35:18.492522,  0] 
> ../source4/smbd/service_stream.c:371(stream_setup_socket)
> 
> Feb 27 16:35:18 adc1 samba[17837]: task[ldapsrv][17837]:   
> stream_setup_socket: Failed to listen on 0.0.0.0:389 - 
> NT_STATUS_ADDRESS_ALREADY_ASSOCIATED
> 
> Feb 27 16:35:18 adc1 samba[17837]: task[ldapsrv][17837]: 
> [2020/02/27 16:35:18.492563,  0] 
> ../source4/ldap_server/ldap_server.c:1036(add_socket)
> 
> Feb 27 16:35:18 adc1 samba[17837]: task[ldapsrv][17837]:   
> ldapsrv failed to bind to 0.0.0.0:389 - 
> NT_STATUS_ADDRESS_ALREADY_ASSOCIATED
> 
> Feb 27 16:35:18 adc1 samba[17837]: task[ldapsrv][17837]: 
> [2020/02/27 16:35:18.492584,  0] 
> ../source4/smbd/service_task.c:36(task_server_terminate)
> 
> Feb 27 16:35:18 adc1 samba[17837]: task[ldapsrv][17837]:   
> task_server_terminate: task_server_terminate: [Failed to 
> startup ldap server task]
> 
> Feb 27 16:35:18 adc1 samba[17837]: task[ldapsrv][17837]: 
> [2020/02/27 16:35:18.492733,  0] 
> ../source4/smbd/process_standard.c:81(sigterm_signal_handler)
> 
> Feb 27 16:35:18 adc1 samba[17837]: task[ldapsrv][17837]:   
> sigterm_signal_handler: Exiting pid 17837 on SIGTERM
> 
> Feb 27 16:35:18 adc1 systemd[1]: samba-ad-dc.service: Failed 
> with result 'exit-code'.
> 
> Feb 27 16:35:18 adc1 systemd[1]: Failed to start Samba AD Daemon.
> 
>  
> 
> Output of the check script : 
> 
>  
> 
> Collected config  --- 2020-02-27-16:30 -----------
> 
>  
> 
> Hostname: adc1
> 
> DNS Domain: transmitcorp.com
> 
> FQDN: adc1.transmitcorp.com
> 
> ipaddress: 172.31.6.15
> 
> -----------
> 
> WARNING: kinit Administrator will fail and this needs to be 
> fixed first.
> 
> unable to verify DNS kerberos._tcp SRV records
> 
>  
> 
> Server:         172.31.6.15
> 
> Address:        172.31.6.15#53
> 
>  
> 
> ** server can't find _kerberos._tcp.transmitcorp.com: NXDOMAIN
> 
>  
> 
>  
> 
> I checked, nothing running on port 389 …
> 
> 
> Greetz,
> 
> Louis
> 
> 
> 
> 
> 
> -- 
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
> 
> -- 
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
> 
>

More information about the samba mailing list