[Samba] Upgrading samba DC with "DC Rejoin" fails "Failed to setup database for BIND, AD based DNS cannot be used"

Andrew Bartlett abartlet at samba.org
Thu Dec 9 07:13:00 UTC 2021

On Wed, 2021-12-08 at 20:00 +0100, Henning Kessler via samba wrote:
> When I delete the files secrets.ldb and secrets.tdb on the to be
> joined DC the result of another attempt is still the same. Deleting
> the same files on the primary results in problems with winbind not
> starting up.
> Any Ideas? Any help highly appreciated

The issues about not deleting the accounts like a bug in the exception
handling - we re-use the same code at the start and try not to delete
accounts that are working, but by this late state we have set up valid
AD accounts and they really work.  

The problem is that this exception is hiding the real one.  Do you have
a tdbbackup binary on your system?  I think that is the real issue, if
not, install it and it might work.

Andrew Bartlett

Andrew Bartlett (he/him)       https://samba.org/~abartlet/
Samba Team Member (since 2001) https://samba.org
Samba Team Lead, Catalyst IT   https://catalyst.net.nz/services/samba

Samba Development and Support, Catalyst IT - Expert Open Source

More information about the samba mailing list