[Samba] Rejoin dc to domain
Karl Heinz Wichmann
Hallo
When rejoining a dc to the domain I get the following error message:
[2015/07/02 11:51:44.089786, 0]
../source4/librpc/rpc/dcerpc_util.c:729(dcerpc_pipe_auth_recv)
Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for
ncacn_ip_tcp:192.168.39.8[1024,seal,krb5,target_hostname=e55933ab-dcfd-42f4-9e77-ae2e7964d301._msdcs.domain.local.de,abstract_syntax=e3514235-4b06-11d1-ab04-00c04fc2dcd2/0x00000004,localaddress=192.168.99.8]
NT_STATUS_INVALID_PARAMETER
[2015/07/02 11:51:49.987117, 0]
../source4/librpc/rpc/dcerpc_util.c:729(dcerpc_pipe_auth_recv)
Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for
ncacn_ip_tcp:192.168.39.8[1024,seal,krb5,target_hostname=e55933ab-dcfd-42f4-9e77-ae2e7964d301._msdcs.domain.local.de,abstract_syntax=e3514235-4b06-11d1-ab04-00c04fc2dcd2/0x00000004,localaddress=192.168.99.8]
NT_STATUS_INVALID_PARAMETER
[2015/07/02 11:51:51.691488, 0]
../source4/librpc/rpc/dcerpc_util.c:729(dcerpc_pipe_auth_recv)
Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for
ncacn_ip_tcp:192.168.39.8[1024,seal,krb5,target_hostname=e55933ab-dcfd-42f4-9e77-ae2e7964d301._msdcs.domain.local.de,abstract_syntax=e3514235-4b06-11d1-ab04-00c04fc2dcd2/0x00000004,localaddress=192.168.99.8]
NT_STATUS_INVALID_PARAMETER
I did this:
kinit admini...@DOMAIN.LOCAL.DE
klist
service sernet-samba-ad stop
rm -rf /var/lib/samba/private/*
samba-tool domain join domain.local.de DC -Uadministrator
--realm=domain.local.de
service sernet-samba-ad restart
samba-tool drs kcc
samba-tool drs replicate DCx039008 DCx099008 dc=domain,dc=local,dc=de
host e55933ab-dcfd-42f4-9e77-ae2e7964d301._msdcs.domain.local.de
e55933ab-dcfd-42f4-9e77-ae2e7964d301._msdcs.domain.local.de is an alias
for DCx039008.domain.local.de.
DCx039008.domain.local.de has address 192.168.39.8
reboot
Software
--------
Sernet Version: 4.2.2-8
Debian 7.8
/etc/samba/smb.conf
[global]
workgroup = domain
realm = DOMAIN.LOCAL.DE
netbios name = DCx039008
server role = active directory domain controller
dns forwarder = xxxxx
idmap_ldb:use rfc2307 = yes
# set loglevel
loglevel = 1
# defrag tdb
dbwrap_tdb_mutexes:* = yes
# RDP problem
server services = +smb -s3fs
dcerpc endpoint servers = +winreg +srvsvc
# disable cups
load printers = no
printing = bsd
printcap name = /dev/null
disable spoolss = yes
[netlogon]
path = /var/lib/samba/sysvol/domain.local.de/scripts
read only = No
[sysvol]
path = /var/lib/samba/sysvol
read only = No
Regards
Karl Heinz
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Davor Vusir
Regards
Davor Vusir
-- Skickat från mobilusken! --
----- Ursprungligt meddelande -----
Från: "Karl Heinz Wichmann" <wichma...@web.de>
Skickat: 2015-07-02 20:16
Till: "sa...@lists.samba.org" <sa...@lists.samba.org>
Ämne: [Samba] Rejoin dc to domain
Davor Vusir
Try do a meta data cleanup "the GUI way"; check DNS, System container, AD sites and services etc. And remove any remains of the old DC.
Regards
Davor
-- Skickat från mobilusken! --
----- Ursprungligt meddelande -----
Från: "Karl Heinz Wichmann" <karl-hein...@online.de>
Skickat: 2015-07-06 10:09
Till: "Davor Vusir" <davor...@gmail.com>; "sa...@lists.samba.org" <sa...@lists.samba.org>
Ämne: Re: SV: [Samba] Rejoin dc to domain
Dear Davor
We receive an error message at the command "list domains"
ntdsutil
metadata cleanup
connections
connect to server <DC with fsmo roles>
quit
select operation target
error: error at handling the input
invalid syntax
-> list domains
But the command is correct!
Am 02.07.2015 um 21:11 schrieb Davor Vusir:
> You might need to do a meta data cleanup before rejoining the DC:
> https://support.microsoft.com/en-us/kb/216498
>
> Regards
> Davor Vusir
>
> -- Skickat från mobilusken! --
> ------------------------------------------------------------------------
> Från: Karl Heinz Wichmann <mailto:wichma...@web.de>
> Skickat: 2015-07-02 20:16
> Till: sa...@lists.samba.org <mailto:sa...@lists.samba.org>
