[Samba] Samba 4.13.3 - bind-dns directory empty

Igor Sousa igorvolt at gmail.com
Sat Jan 9 19:11:51 UTC 2021 

Hi Rowland,

I've got it. I don't know the reason, but I think I've modified the order
of some steps in my tutorial. The configure BIND9_DLZ step was described
before the provision domain step. When I correctly order these 2 steps, the
bind-dns' files appear in this directory. Then, I managed to install and
provision Samba Domain with no errors.

--
Igor Sousa


Em sáb., 9 de jan. de 2021 às 12:08, Rowland penny via samba <
samba at lists.samba.org> escreveu:

> On 09/01/2021 14:13, Igor Sousa via samba wrote:
> > Hi,
> >
> > I created an installation tutorial for Samba 4.12.4 Domain Controller
> based
> > on my domain requirements on June/2020. When I've tested to follow this
> > tutorial to install Samba 4.13.3, I notice some inconsistency:
> >
> >     1. /usr/local/samba/bind-dns/ is empty;
> >     2. When I seek to dns.keytab (find /usr/local/samba -i dns.keytab),
> >     nothing is returned, but I find a secrets.keytab in
> >     /usr/local/samba/private;
> >     3. I don't find named.conf in /usr/local/samba/bind-dns or
> >     /usr/local/samba/private. This there is in /usr/local/samba/share
> >
> > I verify my tutorial with the Samba Wiki topics "Setting up Samba as an
> > Active Directory Domain Controller", "Setting up a BIND DNS Server" and
> > "BIND9 DLZ DNS Back End" and I don't notice any difference between this
> > same pages that I accessed on June/2020.
> >
> > I'm feeling pretty dumb by this. It seems I don't see something obvious.
> >
> > --
> > Igor Sousa
>
> There is a bug: https://bugzilla.samba.org/show_bug.cgi?id=14535
>
> Basically, there is no code to create the keytab in the bind-dns
> directory. The code is only required on three occasions, when a new DC
> is provisioned with '  --dns-backend=BIND9_DLZ', when you upgrade from
> the internal dns server to bind9 and when you join another DC with
> '--dns-backend=BIND9_DLZ'. The code is there for the provision and in
> samba_dnsupdate, but not for the join.
>
> The fix (at the moment) is to change to the internal dns server with
> samba_dnsupdate, then change back to bind9 with the same tool, the
> keytab will then appear in the bind-dns directory.
>
> Rowland
>
>
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>

More information about the samba mailing list