Web lists-archives.com

Re: [Samba] Time server on AD DC in an LXD container.




Thanks for all the suggestions.

Apparently somethings just take time to work out...

This morning I came in and my W10 workstations are happily getting their
time from the AD PDC emulator and also my secondary AD DC. I'm guessing
that it just took awhile for the systems to sync.

Bottom line - what worked in my situation was chrony because it plays nice
in a LXD container running Ubuntu 18.04.

Thanks,
Jonathan Kreider


On Wed, Nov 7, 2018 at 11:39 AM Sonic <sonicsmith@xxxxxxxxx> wrote:

> You might find a solution here:
>
> https://serverfault.com/questions/879164/using-host-as-ntp-client-and-lxc-router-as-ntp-server
>
> On Tue, Nov 6, 2018 at 5:59 PM Jonathan Kreider via samba
> <samba@xxxxxxxxxxxxxxx> wrote:
> >
> > Further investigations reveal:
> > ---
> > C:\WINDOWS\system32> w32tm /monitor
> > GetDcList failed with error code:  0x800706BA.
> > Exiting with error 0x800706BA
> > ---
> >  error 0x800706BA indicates that the RPC server is unavailable.
> >
> > Any ideas?
> > Thanks,
> > Jonathan Kreider
> >
> >
> > On Tue, Nov 6, 2018 at 5:48 PM Jonathan Kreider <
> jonathan.kreider@xxxxxxxxx>
> > wrote:
> >
> > >
> > > Thanks Robert & Marco.
> > >
> > > @Robert - I tried your solution, but couldn't get it to work because my
> > > host is ubuntu 16.04 and the chrony version for this is too old to
> support
> > > the ntpsigndsocket option.
> > >
> > > @Marco - your response got me searching in another direction. I had
> tried
> > > ntpd in the container, which LXD did not like. My research turned up
> that
> > > Ubuntu now strongly favors chrony as of 18.04 AND that chrony has been
> > > patched to work as a time_server_ (which is what I need) in containers.
> > >
> > > I've successfully installed chrony in the container and have setup
> > > chrony.conf for ntpsigndsocket (and other suggested settings from
> > > https://wiki.samba.org/index.php/Time_Synchronisation. I've also
> > > verified/set ownership and permissions for /var/lib/samba/ntp_signd.
> This
> > > appears to be the path where samba expects to find this on the Ubuntu
> > > distribution. Is there a way to verify that this is the correct path?
> > >
> > > I've restarted both the samba ad dc and chrony services.
> > >
> > > However, running w32tm /resync on my W10 domain member is still not
> > > working.
> > >
> > > running: C:\WINDOWS\system32> w32tm /query /source
> > > returns only -> Local CMOS Clock
> > >
> > > Also...
> > > ---
> > > C:\WINDOWS\system32> w32tm /resync /rediscover
> > > Sending resync command to local computer
> > > The computer did not resync because no time data was available.
> > > ---
> > > How do I further troubleshoot this? Is there a way to check on the
> server
> > > whether my samba AD DC is able to provide the time service?
> > >
> > > Thanks,
> > > Jonathan
> > >
> > >
> > >> To unsubscribe from this list go to the following URL and read the
> > >> instructions:  https://lists.samba.org/mailman/options/samba
> > >>
> > >
> > --
> > To unsubscribe from this list go to the following URL and read the
> > instructions:  https://lists.samba.org/mailman/options/samba
>
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba