[Samba] How to delete an unwanted NS record

Rowland penny rpenny at samba.org
Wed Jul 8 14:02:23 UTC 2020

On 08/07/2020 14:50, James B. Byrne wrote:
> This is in smbd.log:
>    Could not find machine account in secrets database: Failed to fetch machine
> account password from secrets.ldb: Could not find entry to match filter:
> '(&(flatname=BROCKLEY)(objectclass=primaryDomain))' base: 'cn=Primary
> Domains': No such object: dsdb_search at
> ../../source4/dsdb/common/util.c:4733 and failed to open
> /var/db/samba4/private/secrets.tdb: NT_STATUS_CANT_ACCESS_DOMAIN_INFO
> [2020/07/08 09:46:32.561883,  0]
> ../../source4/smbd/service_task.c:36(task_server_terminate)
>    task_server_terminate: task_server_terminate: [Failed to obtain server
> credentials, perhaps a standalone server?: NT_STATUS_CANT_ACCESS_DOMAIN_INFO
> Why was I be told to remove the secrets.?db files if doing that that prevents
> the samba_server from starting at all?
I do not remember telling you to remove secrets.tdb from a running DC. 
You might remove it from a dead or demoted DC, because when it is 
re-joined as a DC, secrets.tdb will be recreated. Have you checked if it 
does exist, you get a similar message if you run samba-tool as a normal 


More information about the samba mailing list