[Samba] samab-4.10 nsupdate

James B. Byrne byrnejb at harte-lyne.ca
Tue Jun 30 20:15:21 UTC 2020


> Could be because you added the wrong line to your smb4.conf (why does
> freebsd call it smb4.conf ?),

Why does freebsd put these things in /usr/local/etc/?  Some questions have
answers that are not worth the effort to know.

> try:
> nsupdate command = /usr/local/sbin/nsupdate -g

I did catch that error earlier.  But it makes no difference.  samba_dnsupdate
does not give any evidence of using any value set by 'dns update command = '. 
It always reports that it cannot find '/usr/bin/nsupdate'.

[root at smb4-1 ~ (master)]# which nsupdate
/usr/local/bin/nsupdate

[root at smb4-1 ~ (master)]# grep nsupdate /usr/local/etc/smb4.conf
  dns update command = /usr/local/bin/nsupdate -g

samba_dnsupdate --verbose -d4 --all-names
. . .
update(nsupdate): SRV
_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.brockley.harte-lyne.ca
SMB4-1.brockley.harte-lyne.ca 389
Calling nsupdate for SRV
_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.brockley.harte-lyne.ca
SMB4-1.brockley.harte-lyne.ca 389 (add)
Successfully obtained Kerberos ticket to DNS/SMB4-1.brockley.harte-lyne.ca as
SMB4-1$
Failed nsupdate: SRV
_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.brockley.harte-lyne.ca
SMB4-1.brockley.harte-lyne.ca 389 : [Errno 2] No such file or directory:
'/usr/bin/nsupdate': '/usr/bin/nsupdate'
Failed update of 29 entries

I experienced this on samba 4.4.3 and the work-around was to create a logical
link /usr/bin/nsupdate pointing at /usr/local/bin/nsupdate.  However, nsupdate
on FreeBSD does not handle the option -g very well.


[root at smb4-1 ~ (master)]# samba_dnsupdate --verbose -d4 --all-names
. . .
update(nsupdate): SRV
_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.brockley.harte-lyne.ca
SMB4-1.brockley.harte-lyne.ca 389
Calling nsupdate for SRV
_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.brockley.harte-lyne.ca
SMB4-1.brockley.harte-lyne.ca 389 (add)
Successfully obtained Kerberos ticket to DNS/SMB4-1.brockley.harte-lyne.ca as
SMB4-1$
/usr/bin/nsupdate: cannot specify -g	or -o, program not linked with GSS API
Library
Failed nsupdate: 1
Failed update of 29 entries

Without the -g option in smb4.conf samba_dnsupdate gives the same result.  I
presume because that -g -o are both part of the default call to nsupdate that
it uses. There does not appear to be any way to unset this.

[root at smb4-1 ~ (master)]# grep nsupdate /usr/local/etc/smb4.conf
  dns update command = /usr/local/bin/nsupdate
. . .
update(nsupdate): SRV
_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.brockley.harte-lyne.ca
SMB4-1.brockley.harte-lyne.ca 389
Calling nsupdate for SRV
_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.brockley.harte-lyne.ca
SMB4-1.brockley.harte-lyne.ca 389 (add)
Successfully obtained Kerberos ticket to DNS/SMB4-1.brockley.harte-lyne.ca as
SMB4-1$
/usr/bin/nsupdate: cannot specify -g	or -o, program not linked with GSS API
Library
Failed nsupdate: 1
Failed update of 29 entries

Where do I go from here?

-- 
***          e-Mail is NOT a SECURE channel          ***
        Do NOT transmit sensitive data via e-Mail
 Do NOT open attachments nor follow links sent by e-Mail

James B. Byrne                mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited          http://www.harte-lyne.ca
9 Brockley Drive              vox: +1 905 561 1241
Hamilton, Ontario             fax: +1 905 561 0757
Canada  L8E 3C3




More information about the samba mailing list