[Samba] Samba AD-DC on FreeBSD-12.1 Jail

James B. Byrne byrnejb at harte-lyne.ca
Mon Jun 8 18:08:00 UTC 2020 

I decided to scrap everything and restart from the very beginning.

I created a new jail.

I installed samba410 samba-nsupdate py37-dnspython as these are current.

I provisioned a domain:

samba-tool domain provision --adminpass=INstall166 --dns-backend=SAMBA_INTERNAL
--dnspass=INstall166 --domain=BROCKLEY --host-name=SMB4-1
--host-ip=192.168.8.166 --option="bind interfaces only=yes"
--option="interfaces=lo0 localhost em0 smb4-1" --option="vfs
objects"="dfs_samba4 zfsacl" --realm=BROCKLEY.HARTE-LYNE.CA --server-role=dc
--use-rfc2307

I modified /etc/nsswitch.conf and /usr/local/etc/smb4.conf:

# cat /etc/nsswitch.conf
#
# nsswitch.conf(5) - name service switch configuration file
# $FreeBSD: releng/12.1/lib/libc/net/nsswitch.conf 338729 2018-09-17 18:56:47Z
brd $
#
group: compat
#group_compat: nis
group_compat: files winbind
hosts: files dns
netgroup: compat
networks: files
passwd: files winbind
#passwd: compat
#passwd_compat: nis
shells: files
services: compat
services_compat: nis
protocols: files
rpc: files

# cat /usr/local/etc/smb4.conf
# Global parameters
[global]
	bind interfaces only = Yes
	dns forwarder = 216.185.71.33
	interfaces = lo0 localhost em0 smb4-1
	netbios name = SMB4-1
	realm = BROCKLEY.HARTE-LYNE.CA
	server role = active directory domain controller
	workgroup = BROCKLEY
	idmap_ldb:use rfc2307 = yes
	vfs objects = dfs_samba4 zfsacl
        server services = -nbt

        log level = 2
        #log file = /var/log/samba4/smbd.log.%m
        log file = /var/log/samba4/smbd.log
        max log size = 10000
        debug timestamp = yes

[sysvol]
	path = /var/db/samba4/sysvol
	read only = No

[netlogon]
	path = /var/db/samba4/sysvol/brockley.harte-lyne.ca/scripts
	read only = N

I linked: /var/db/samba4/private/krb5.conf to: /etc/krb5.conf

I started samba_server and checked the log files.  This is what I found:

# cat /var/log/samba4/log.wb-BROCKLEY
[2020/06/08 13:57:23.922632,  2]
../../source3/winbindd/winbindd_rpc.c:301(rpc_name_to_sid)
  name_to_sid: failed to lookup name: NT_STATUS_NONE_MAPPED
[2020/06/08 13:57:23.923935,  2]
../../source3/winbindd/winbindd_rpc.c:301(rpc_name_to_sid)
  name_to_sid: failed to lookup name: NT_STATUS_NONE_MAPPED
[2020/06/08 13:57:23.924954,  2]
../../source3/winbindd/winbindd_rpc.c:301(rpc_name_to_sid)
  name_to_sid: failed to lookup name: NT_STATUS_NONE_MAPPED



# cat  /var/log/samba4/smbd.log
. . .
[2020/06/08 13:57:23.969840,  1]
../../source3/printing/printer_list.c:234(printer_list_get_last_refresh)
  Failed to fetch record!
[2020/06/08 13:57:23.970010,  2]
../../source3/smbd/server.c:1421(smbd_parent_loop)
  waiting for connections
[2020/06/08 13:57:23.986940,  1] ../../source3/lib/messages.c:899(send_all_fn)
  send_all_fn: messaging_send_buf to 56467 failed: NT_STATUS_OBJECT_NAME_NOT_FOUND
[2020/06/08 13:57:23.987661,  1] ../../source3/lib/messages.c:899(send_all_fn)
  send_all_fn: messaging_send_buf to 56487 failed: NT_STATUS_OBJECT_NAME_NOT_FOUND
[2020/06/08 13:57:23.988035,  1] ../../source3/lib/messages.c:899(send_all_fn)
  send_all_fn: messaging_send_buf to 56477 failed: NT_STATUS_OBJECT_NAME_NOT_FOUND
[2020/06/08 13:57:23.988495,  1] ../../source3/lib/messages.c:899(send_all_fn)
  send_all_fn: messaging_send_buf to 56485 failed: NT_STATUS_OBJECT_NAME_NOT_FOUND
[2020/06/08 13:57:23.989339,  1] ../../source3/lib/messages.c:899(send_all_fn)
  send_all_fn: messaging_send_buf to 56486 failed: NT_STATUS_OBJECT_NAME_NOT_FOUND
[2020/06/08 13:57:24.237314,  2]
../../lib/util/util_runcmd.c:327(samba_runcmd_io_handler)
  /usr/local/sbin/samba_dnsupdate: Failed update of 1 entries
[2020/06/08 13:57:24.291048,  0]
../../source4/dsdb/dns/dns_update.c:331(dnsupdate_nameupdate_done)
  dnsupdate_nameupdate_done: Failed DNS update with exit code 1
. . .


Before proceeding I would like to know what these log entries are telling me. 
If someone could be so kind as to provide me with that information.  These do
not appear to be errors per se, but they may mean that I have neglected to
configure something, or have done so improperly.

Thanks,

-- 
***          e-Mail is NOT a SECURE channel          ***
        Do NOT transmit sensitive data via e-Mail
 Do NOT open attachments nor follow links sent by e-Mail

James B. Byrne                mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited          http://www.harte-lyne.ca
9 Brockley Drive              vox: +1 905 561 1241
Hamilton, Ontario             fax: +1 905 561 0757
Canada  L8E 3C3

More information about the samba mailing list