Web lists-archives.com

Re: [Samba] Error joining Samba 4.7.4 DC to existing Win2008R2 domain




You are always receiving these:

Adding DNS A record SRVAD-NEW.SAMDOM.LOCAL for IPv4 IP: 10.0.3.100
Join failed - cleaning up

Questions:

1) Prior to the join, dos a kinit -V5 ADMINISTRATOR@SAMDOM.LOCAL works?
2) Can you create DNS entries without issues with your administrator account?
3) Can you do a test and join your samba server as a normal computer? Does it work?

Regards,
Vinicius.

Em 01/03/2018 10:05, Claudio Nicora via samba escreveu:
It seems I'm talking to myself... anyway another test here:

Added the existing DC IP config to /etc/hosts and the join now shows a more explicit LDAP error:

---
Wrong username or password: kinit for SRVAD-NEW$@SAMDOM.LOCAL failed (Preauthentication failed) SPNEGO(gssapi_krb5) creating NEG_TOKEN_INIT for ldap/SRVAD-OLD.SAMDOM.LOCAL failed (next[ntlmssp]): NT_STATUS_LOGON_FAILURE
Got challenge flags:
Got NTLMSSP neg_flags=0x62898235
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x62088235
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x62088235
Failed to bind - LDAP error 49 LDAP_INVALID_CREDENTIALS - <8009030C: LdapErr: DSID-0C0904D0, comment: AcceptSecurityContext error, data 52e, v1db0> <> Failed to connect to 'ldap://SRVAD-OLD.SAMDOM.LOCAL' with backend 'ldap': LDAP error 49 LDAP_INVALID_CREDENTIALS - <8009030C: LdapErr: DSID-0C0904D0, comment: AcceptSecurityContext error, data 52e, v1db0> <>



-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba