[Samba] Samba-4.11 AD DC provisioning fails

James B. Byrne byrnejb at harte-lyne.ca
Thu Jun 4 15:50:19 UTC 2020 

I decided to restart the provisioning process.  I stopped the samba_server,
deleted /usr/local/etc/smb4.conf and /var/db/samba4.  I then decided to do an
interactive provisioning and this is the result:

[root at smb4-1 ~ (master)]# ll /var/samba4 ; ll /usr/local/etc/smb4.conf
ls: /var/samba4: No such file or directory
ls: /usr/local/etc/smb4.conf: No such file or directory
[root at smb4-1 ~ (master)]# samba-tool domain provision
Realm [BROCKLEY.HARTE-LYNE.CA]:
Domain [BROCKLEY]:
Server Role (dc, member, standalone) [dc]:
DNS backend (SAMBA_INTERNAL, BIND9_FLATFILE, BIND9_DLZ, NONE) [SAMBA_INTERNAL]:
DNS forwarder IP address (write 'none' to disable forwarding) [216.185.71.33]:
Administrator password:
Retype password:
INFO 2020-06-04 11:32:49,826 pid:59993
/usr/local/lib/python3.7/site-packages/samba/provision/__init__.py #2136:
Looking up IPv4 addresses
WARNING 2020-06-04 11:32:49,826 pid:59993
/usr/local/lib/python3.7/site-packages/samba/provision/__init__.py #2142: More
than one IPv4 address found. Using 192.168.8.166
INFO 2020-06-04 11:32:49,827 pid:59993
/usr/local/lib/python3.7/site-packages/samba/provision/__init__.py #2153:
Looking up IPv6 addresses
WARNING 2020-06-04 11:32:49,827 pid:59993
/usr/local/lib/python3.7/site-packages/samba/provision/__init__.py #2160: No
IPv6 address will be assigned
ERROR(<class 'samba.provision.ProvisioningError'>): Provision failed -
ProvisioningError: Failed to create directory /var/db/samba4/private: No such
file or directory
  File "/usr/local/lib/python3.7/site-packages/samba/netcmd/domain.py", line
542, in run
    backend_store_size=backend_store_size)
  File "/usr/local/lib/python3.7/site-packages/samba/provision/__init__.py",
line 2284, in provision
    directory_create_or_exists(paths.private_dir, 0o700)
  File "/usr/local/lib/python3.7/site-packages/samba/provision/__init__.py",
line 2131, in directory_create_or_exists
    raise ProvisioningError("Failed to create directory %s: %s" % (path,
e.strerror))

Now, I had previously successfully provisioned a domain on this specific host
using the non-interactive form.  SO I went to the history and copied that
command. And this is the result:

ll /var/samba4 ; ll /usr/local/etc/smb4.conf
ls: /var/samba4: No such file or directory
ls: /usr/local/etc/smb4.conf: No such file or directory
[root at smb4-1 ~ (master)]# samba-tool domain provision --adminpass=INstall166
--dns-backend=SAMBA_INTERNAL --dnspass=INstall166 --domain=BROCKLEY
--host-name=SMB4-1 --host-ip=192.168.216.166 --option="bind interfaces
only=yes" --option="interfaces=lo0 em0" --option="vfs objects"="dfs_samba4
zfsacl" --realm=BROCKLEY.HARTE-LYNE.CA --server-role=dc --use-rfc2307
INFO 2020-06-04 11:43:11,871 pid:60209
/usr/local/lib/python3.7/site-packages/samba/provision/__init__.py #2153:
Looking up IPv6 addresses
WARNING 2020-06-04 11:43:11,872 pid:60209
/usr/local/lib/python3.7/site-packages/samba/provision/__init__.py #2160: No
IPv6 address will be assigned
ERROR(<class 'samba.provision.ProvisioningError'>): Provision failed -
ProvisioningError: Failed to create directory /var/db/samba4/private: No such
file or directory
  File "/usr/local/lib/python3.7/site-packages/samba/netcmd/domain.py", line
542, in run
    backend_store_size=backend_store_size)
  File "/usr/local/lib/python3.7/site-packages/samba/provision/__init__.py",
line 2284, in provision
    directory_create_or_exists(paths.private_dir, 0o700)
  File "/usr/local/lib/python3.7/site-packages/samba/provision/__init__.py",
line 2131, in directory_create_or_exists
    raise ProvisioningError("Failed to create directory %s: %s" % (path,
e.strerror))

There are no samba related service running:

[root at smb4-1 ~ (master)]# ps -auwx
USER   PID %CPU %MEM   VSZ  RSS TT  STAT STARTED    TIME COMMAND
root 59286  0.0  0.0 11400 2764  -  IsJ  11:20   0:00.01 /usr/sbin/syslogd -c -ss
root 59365  0.0  0.1 19876 9540  -  IsJ  11:20   0:00.00 /usr/sbin/sshd
root 59372  0.0  0.0 11248 2604  -  SsJ  11:20   0:00.01 /usr/sbin/cron -J 15 -s
root 59468  0.0  0.0 12024 3188  2  IJ   11:21   0:00.01 login [pam] (login)
root 59469  0.0  0.0 13368 4036  2  IJ   11:21   0:00.01 -csh (csh)
root 59473  0.0  0.0 13904 5156  2  SJ   11:21   0:00.24 bash -l -l
root 60281  0.0  0.0 11820 3120  2  R+J  11:46   0:00.00 ps -auwx

This is extremely distressing. All that was done was the old domain removed and
the thing re-provisioned.  And this error shows up.  What other artifacts of a
domain provisioning are preventing this from working as it should?  have I
failed to delete something somewhere?

-- 
***          e-Mail is NOT a SECURE channel          ***
        Do NOT transmit sensitive data via e-Mail
 Do NOT open attachments nor follow links sent by e-Mail

James B. Byrne                mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited          http://www.harte-lyne.ca
9 Brockley Drive              vox: +1 905 561 1241
Hamilton, Ontario             fax: +1 905 561 0757
Canada  L8E 3C3

More information about the samba mailing list