[samba-jp:22855] Re: BDCの追加について

小林 崇史|Takashi KOBAYASHI t-kobayashi @ organ-ndl.co.jp
2018年 5月 16日 (水) 15:36:07 JST


中野様

ご返信下さいまして有難うございます。

> samba4.6系のほか、4.7系や4.8系で再検証しても
> 状況は同じですか?

4.7.7と4.8.1で検証してみましたが、今度はドメインへの参加ができなくなってしま
いました。

Sambaのバージョン(4.7以降?)によっては、このようにドメインに参加できなくな
ることがあるようです。
https://www.spinics.net/lists/samba/msg148183.html

----------
# /usr/local/samba/bin/samba-tool domain join test.local DC -U administrator
--realm=TEST.LOCAL
Finding a writeable DC for domain 'test.local'
Found DC dc1.test.local
Password for [WORKGROUP\administrator]:
workgroup is TEST
realm is test.local
Adding CN=DC2,OU=Domain Controllers,DC=test,DC=local
Adding
CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=te
st,DC=local
Adding CN=NTDS
Settings,CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configurat
ion,DC=test,DC=local
Adding SPNs to CN=DC2,OU=Domain Controllers,DC=test,DC=local
Setting account password for DC2$
Enabling account
Calling bare provision
Looking up IPv4 addresses
Looking up IPv6 addresses
No IPv6 address will be assigned
Setting up share.ldb
Setting up secrets.ldb
Setting up the registry
Setting up the privileges database
Setting up idmap db
Setting up SAM db
Setting up sam.ldb partitions and settings
Setting up sam.ldb rootDSE
Pre-loading the Samba 4 and AD schema
Unable to determine the DomainSID, can not enforce uniqueness constraint on
local domainSIDs

A Kerberos configuration suitable for Samba AD has been generated at
/usr/local/samba/private/krb5.conf
Merge the contents of this file with your system krb5.conf or replace it
with this one. Do not create a symlink!
Provision OK for domain DN DC=test,DC=local
Starting replication
Schema-DN[CN=Schema,CN=Configuration,DC=test,DC=local] objects[402/1334]
linked_values[0/0]
Schema-DN[CN=Schema,CN=Configuration,DC=test,DC=local] objects[804/1334]
linked_values[0/0]
Schema-DN[CN=Schema,CN=Configuration,DC=test,DC=local] objects[1206/1334]
linked_values[0/0]
Schema-DN[CN=Schema,CN=Configuration,DC=test,DC=local] objects[1608/1334]
linked_values[0/0]
Schema-DN[CN=Schema,CN=Configuration,DC=test,DC=local] objects[1743/1334]
linked_values[0/0]
Analyze and apply schema objects
Partition[CN=Configuration,DC=test,DC=local] objects[402/3479]
linked_values[0/67]
Partition[CN=Configuration,DC=test,DC=local] objects[804/3479]
linked_values[0/67]
Partition[CN=Configuration,DC=test,DC=local] objects[1206/3479]
linked_values[0/67]
Partition[CN=Configuration,DC=test,DC=local] objects[1608/3479]
linked_values[0/67]
Partition[CN=Configuration,DC=test,DC=local] objects[1891/3479]
linked_values[55/67]
Partition[CN=Configuration,DC=test,DC=local] objects[1911/3479]
linked_values[12/67]
Replicating critical objects from the base DN of the domain
Partition[DC=test,DC=local] objects[107/107] linked_values[0/3]
Partition[DC=test,DC=local] objects[407/4695] linked_values[3/3]
Done with always replicated NC (base, config, schema)
Replicating DC=DomainDnsZones,DC=test,DC=local
Partition[DC=DomainDnsZones,DC=test,DC=local] objects[23/23]
linked_values[0/0]
Replicating DC=ForestDnsZones,DC=test,DC=local
Partition[DC=ForestDnsZones,DC=test,DC=local] objects[8/8]
linked_values[0/0]
Exop on[CN=RID Manager$,CN=System,DC=test,DC=local] objects[3]
linked_values[0]
Committing SAM database
Adding 1 remote DNS records for DC2.test.local
Adding DNS A record DC2.test.local for IPv4 IP: xxx.xxx.xxx.xxx
Join failed - cleaning up
Deleted CN=RID Set,CN=DC2,OU=Domain Controllers,DC=test,DC=local
Deleted CN=DC2,OU=Domain Controllers,DC=test,DC=local
Deleted CN=NTDS
Settings,CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configurat
ion,DC=test,DC=local
Deleted
CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=te
st,DC=local
ERROR(runtime): uncaught exception - (9003,
'WERR_DNS_ERROR_RCODE_NAME_ERROR')
  File
"/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/__init__.py",
line 176, in _run
    return self.run(*args, **kwargs)
  File
"/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/domain.py",
line 706, in run
    plaintext_secrets=plaintext_secrets)
  File "/usr/local/samba/lib64/python2.7/site-packages/samba/join.py", line
1482, in join_DC
    ctx.do_join()
  File "/usr/local/samba/lib64/python2.7/site-packages/samba/join.py", line
1390, in do_join
    ctx.join_add_dns_records()
  File "/usr/local/samba/lib64/python2.7/site-packages/samba/join.py", line
1122, in join_add_dns_records
    dns_partition=domaindns_zone_dn)
  File "/usr/local/samba/lib64/python2.7/site-packages/samba/samdb.py", line
957, in dns_lookup
    dns_partition=dns_partition)
----------





samba-jp メーリングリストの案内