[Samba] Samba AD DC DNS issue after upgrade

Rowland Penny rpenny at samba.org
Mon Aug 19 13:18:52 UTC 2024


On Mon, 19 Aug 2024 12:58:42 +0000
Thaddeus Waldner via samba <samba at lists.samba.org> wrote:

> Hi,
> 
> I upgraded my DC and file server from ubuntu 22.04 to 24.04 and then
> also upgraded Samba from 4.14 to 4.21.

Where did you get the Samba 4.21 from ? It hasn't been released yet.
How did you upgrade Ubuntu ?
How did you upgrade Samba ?

> 
> Now the only user that can log in is Administrator.

What does 'wbinfo -u' show ?

> 
> Adding the min protocol = NT1 lines enables users to log in but file
> server logins fail with "incorrect password" message

What are the clients ?

> 
> Systemctl status samba-ad-dc shows the following line
> 
> 
> /usr/sbin/samba_dnsupdate: ERROR(runtime): Record already exists;
> record could not be added. zone[nds.newdaleschool.com]
> name[_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones]
> [WERR_DNS_ERROR_RECORD_ALREADY_EXISTS] - (9711,
> 'WERR_DNS_ERROR_RECORD_ALREADY_EXISTS')

That isn't really an error, how can the record you are trying to add
existing be an error.

> 
> kinit fails with the following error: (anonymized)
> 
> 
> kinit: Cannot find KDC for realm “SAMDOM.EXAMPLE.COM" while getting
> initial credentials

Fairly ovbiously, your DC cannot find itself via dns, check
/etc/resolv.conf

> 
> smb.conf: (anynymized)
> 
> 
> # Global parameters
> 
> [global]
> 
> dns forwarder = 8.8.8.8
> 
> # netbios name = DC1

Why is the netbios name commented out ?

Rowland



More information about the samba mailing list