[Samba] LDAP error 53 LDAP_UNWILLING_TO_PERFORM

Omnis ludis - games sergey.gortinsc17 at gmail.com
Tue May 28 09:22:23 UTC 2024 

the CENTOS 7 operating system is used
the command to enter is as follows: samba-tool domain join admugra.local DC
-U Administrator --dns-backend=BIND9_DLZ --realm=ADMUGRA.LOCAL
--backend-store=mdb --option="ad dc functional level = 2016"
--server=dc1.admugra.local -d 10
version exactly 4.19
join to DC not RODC

сб, 25 мая 2024 г. в 14:11, Rowland Penny via samba <samba at lists.samba.org>:

> On Fri, 24 May 2024 16:22:33 +0300
> Omnis ludis - games via samba <samba at lists.samba.org> wrote:
>
> > good afternoon, when entering into the domain an error occurs, the
> > administrator has all the rights, but for some reason it is not
> > possible to enter this server into the domain, samba 4.19.0, the log
> > is attached
> >
> > INFO 2024-05-24 17:23:00,320
> > pid:73718 /opt/reddc/lib/python3.8/site-packages/samba/netcmd/main.py
> > #91: workgroup is DOMAIN INFO 2024-05-24 17:23:00,320 pid:73718
> > /opt/reddc/lib/python3.8/site-packages/samba/netcmd/main.py #91:
> > realm is doamin.local
>
> I do hope that 'domain.local' is sanitisation for your real dns domain.
>
> > ERROR(ldb): uncaught exception - LDAP error 53
> > LDAP_UNWILLING_TO_PERFORM - <00002010: SvcErr: DSID-031A124C, problem
> > 5003 (WILL_NOT_PERFORM), data 0
> > > <>
> >   File "samba/netcmd/__init__.py", line 279, in
> > samba.netcmd.Command._run File "samba/netcmd/domain/join.py", line
> > 130, in samba.netcmd.domain.join.cmd_domain_join.run
> >   File "samba/join.py", line 1683, in samba.join.join_DC
> >   File "samba/join.py", line 1590, in samba.join.DCJoinContext.do_join
> >   File "samba/join.py", line 1563, in samba.join.DCJoinContext.do_join
> >   File "samba/join.py", line 649, in
> > samba.join.DCJoinContext.join_add_objects
> > Adding CN=DCRED,OU=Domain Controllers,DC=domain,DC=local
> > Join failed - cleaning up
>
> What OS is this ?
>
> Can you confirm the Samba version is 4.19.0 ?
>
> It seems that you are trying to join an RODC, is this correct ?
>
> What was the actual command you used to join the domain ?
>
> Rowland
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>

More information about the samba mailing list