[Samba] [Fwd: Joining AD - wrong DNS name, wrong keytab]
Rowland penny
rpenny at samba.org
Tue Oct 13 08:32:06 UTC 2020
On 13/10/2020 09:10, Jan Zháňal via samba wrote:
> Maybe I wrote it misleading, its just a DNS name, not whole active
> directory subdomain.
>
> Jan
>
OK, lets us suppose that your AD uses the 'example.com' dns domain, this
means your Kerberos realm will be 'EXAMPLE.COM'. You then want to join a
computer in the 'base.example.com' dns domain, why ? and why do think it
should work ?
The computer you are joining to a Samba AD domain should be in the AD
dns domain, whilst it may join with an incorrect dns domain, any UPN and
SPN's created will use the correct REALM for the AD domain.
Rowland
More information about the samba
mailing list