[Samba] Joining Samba AD DC from Docker container fails - timeout

Ralph Boehme slow at samba.org
Wed Jun 16 13:07:25 UTC 2021

Am 16.06.21 um 14:06 schrieb John Mulligan via samba:
> So far that's been my experience too. The AD DC needs to read and write the
> 'security.NTACL' xattr and that in turn needs CAP_SYS_ADMIN [1].
> If Greg has some way around this requirement I'd love to hear more, but I
> didn't find one myself.

fwiw, there's a pending MR here: 

It just needs some more developer resources to get it ready of upstream. 
We ship a stripped down version of the patches in our SAMBA+ packages, 
basically in order to use it in our new SAMBA+ fileserver container.


Ralph Boehme, Samba Team                https://samba.org/
Samba Developer, SerNet GmbH   https://sernet.de/en/samba/
GPG-Fingerprint   FAE2C6088A24252051C559E4AA1E9B7126399E46

-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <http://lists.samba.org/pipermail/samba/attachments/20210616/2b88d0af/OpenPGP_signature.sig>

More information about the samba mailing list