[Samba] Unable to join domain?
Dan Egli
dan at newideatest.site
Sun Feb 7 21:14:26 UTC 2021
I think I'm nearly there. I got to the point where I was running net ads
join -U Administrator, but it does nothing when I do that:
# net ads join -U Administrator
Enter Administrator's password:<enter password>
at which point it just sits there. Out of curosity, I ran strace on the
net program as I was attempting to join. It shows reading each character
individually, but not doing anything else. It just continues to look for
input:
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "X", 1024) = 1
read(0, "\r", 1024) = 1
read(0, <sits here for eternity>
I doubt I've encountered a bug, that's too big and ugly to have escaped
detection. So what am I doing wrong?
My updated smb.conf (sans comments):
[global]
workgroup = eglifamily
security = ADS
realm = eglifamily.name
winbind refresh tickets = Yes
vfs objects = acl_xattr
map acl inherit = Yes
store dos attributes = Yes
dedicated keytab file = /etc/krb5.keytab
kerberos method = secrets and keytab
winbind use default domain = yes
winbind enum users = yes
winbind enum groups = yes
dmap config * : backend = autorid
idmap config * : range = 10000-24999999
idmap config * : rangesize = 200000
template shell = /bin/bash
template homedir = /bulk/home/%U
username map = /var/lib/samba/etc/user.map
[homes]
comment = Home Directories
browseable = no
[printers]
comment = All Printers
path = /var/spool/samba
browseable = no
guest ok = no
writable = no
printable = yes
Thanks for you help so far!
On 2/7/2021 2:52 AM, Rowland penny via samba wrote:
> On 07/02/2021 01:13, Dan Egli wrote:
>>
>> # samba-tool dns zonecreate 192.168.10.3 10.168.182.in-addr.arpa
>> -UAdministrator%%<password>
>
>
> Try it like this:
>
> samba-tool dns zonecreate 192.168.10.3 10.168.182.in-addr.arpa
> -UAdministrator
>
> It will prompt you for the password.
>
> If this doesn't work, do you want to try provisioning again, but in a
> different way ?
>
> If so try like this:
>
> samba-tool domain provision --use-rfc2307 --domain=EGLIFAMILY
> --realm=EGLIFAMILY.NAME --adminpass=xxxxxxxxxx
>
> Where 'xxxxxxxxxx' contains characters from three of the following
> categories:
>
> Uppercase letters
>
> Lowercase letters
>
> numbers
>
> Nonalphanumeric characters: ~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/
>
> Any Unicode character that is categorized as an alphabetic
> character but is not uppercase or lowercase.
>
> The password needs to be at least 7 characters long.
>
> For instance (Don't use this): P4ssW*rd
>
> Rowland
>
>
>
More information about the samba
mailing list