Web lists-archives.com

Re: [Samba] Dynamic DNS tips? (Samba 4.8.x + Bind9_DLZ)




On Tue, 1 Jan 2019 18:29:01 -0500
Nico Kadel-Garcia <nkadel@xxxxxxxxx> wrote:

> On Tue, Jan 1, 2019 at 10:08 AM Rowland Penny via samba
> <samba@xxxxxxxxxxxxxxx> wrote:
> >
> > On Tue, 1 Jan 2019 09:50:45 -0500
> > Nico Kadel-Garcia <nkadel@xxxxxxxxx> wrote:
> >
> > > > If you want your clients to update their own records, then let
> > > > them, but be aware that any Unix clients will not even try.
> > >
> > > Well, they can try. It takes some configuration and thought to do
> > > so reliably and securely.
> >
> > Just how do you configure the dhcp client software to upgrade the
> > dns records in AD ?
> >
> > Rowland
> 
> I can't discuss the most recent time I dealt with this. The time
> before *that*, I walked my way through Red Hat's notes at
> https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/windows_integration_guide/sssd-dyndns
> .Doing it through sssd is... well it's overkill. The time before
> *that*, I got the AD administrator to allow "non-secure DNS updates"
> that were compatible with the RHEL 5 systems I was dealing with. That
> wasn't ideal, but I was having enough difficulty negotiating
> configurations with the AD administrators that I could only achieve so
> much.

That isn't configuring the dhcp client ;-)

I wasn't aware that sssd could this, but just running sssd to update
dns records is overkill, you do not need it for anything else.

Rowland

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba