Domain join failing in an RODC site.
Richard Sharpe
realrichardsharpe at gmail.com
Thu Aug 29 12:17:49 MDT 2013
On Thu, Aug 29, 2013 at 11:10 AM, Stefan (metze) Metzmacher
<metze at samba.org> wrote:
> Hi HEMANTH,
>
>> When we are trying to join the domain from a site in which only available
>> DC is Read Only DC, Samba server is always contacting the site local RODC
>> and failing with status not supported error.
>>
>> Whereas other windows clients in the same site are able to contact the
>> writable DCs outside of the site and domain join is succeeding.
>>
>> Looks like we are always querying the site local DC information .. Here is
>> the snippet from net ads join -d10 :
>>
>> dsgetdcname: domain_name: FUNC, domain_guid: (null), site_name: (null),
>> flags: 0x40001011
>> debug_dsdcinfo_flags: 0x40001011
>> DS_FORCE_REDISCOVERY DS_DIRECTORY_SERVICE_REQUIRED
>> DS_WRITABLE_REQUIRED DS_RETURN_DNS_NAME
>> sitename_fetch: Returning sitename for FUNC: "FUNC-SITE3"
>> dsgetdcname_rediscover
>> ads_dns_lookup_srv: Failed to resolve
>> _ldap._tcp.FUNC-SITE3._sites.dc._msdcs.FUNC (Unknown error: 0)
>>
>> I also witnessed that in dsgetdcname() there is no separate query sent when
>> we have flag DS_WRITABLE_REQUIRED for domain join.
>>
>> Bug 5917 already raised for the same. Just want to know whether this has
>> been addressed in latest releases including samba4.
>
> No, it's not fixed yet, please paste the content of this mail to the bug.
And also past your more recent analysis and proposed fix into the bug as well.
--
Regards,
Richard Sharpe
(何以解憂?唯有杜康。--曹操)
More information about the samba-technical
mailing list