Re: [Samba] [samba] DNS update failed!
Alexander R. Fahrutdinov wrote: В сообщении от 30 июля 2010 09:39:05 автор Alexander R. Fahrutdinov написал: В сообщении от 29 июля 2010 17:05:53 автор k.maksimov написал: Alexander R. Fahrutdinov wrote: В сообщении от 29 июля 2010 09:08:29 автор Alexander R. Fahrutdinov написал: В сообщении от 28 июля 2010 18:10:29 автор k.maksimov написал: Alexander R. Fahrutdinov wrote: В сообщении от 28 июля 2010 10:15:25 автор k.maksimov написал: Anton wrote: On 28 July 2010 01:45, k.maksimov wrote: I have two networks: 192.168.1.0 with netmask 255.255.255.0 and 172.16.0.0 with netmask 255.255.254.0, when I join in domain in first network hostname registered successfully, but in second network: sudo net ads join -U admin Enter admin's password: Using short domain name -- BUTB Joined 'TH-2-011' to realm 'butb.by' DNS update failed! As far as I can tell (I'm not entirely certain though) this is an Active Directory / Windows Server configuration issue around loosening permissions enough for the DHCP service to update the DNS records. I don't know exactly what settings need to be configured though, as I didn't manage to get it working either. In the end I decided to keep the standard security and just use static IPs and DNS records for winbind machines. I'm use static IP and I haven't DHCP. and this problem not an AD: Windows machines successfully update DNS. also I have ~200 machines and I can't add every DNS record manually. It seems, secure DNS update has broken in samba. I tried to use different versions of samba (3.2.4, 3.4.4, 3.5.4, etc), but always got an error during DNS update, in spite of "wbinfo -t" and "net ads info" commands output was OK. Secure DNS update via nss-update script has sucssefully completed, but it requires a domain admin creditionals. Guys from http://rc.quest.com/topics/ddns/old.php create a patch for nss- update and GSSAPI library to use machine account instead admin one, but I don't try this. So, I don't promise to disable the secure DNS update, because it decrease AD security. Perghaps, somebody tell us, what we doing wrong? Earlier I tested DNS update on samba package included in Debian Etch, Lenny and testing Debian branch. Now I download CentOS distribution and try to update DNS via "net ads dns register -P" command. I'm surprised when command reports "Successfully registered hostname with DNS" with samba 3.0.33 and 3.5.4 versions. So, it isn't samba problem, but problem of specific distribution. And what's your distribution? I'm use Linux Mint 9 (based on Ubuntu 10.4), samba is 3.4.7, and in network 192.168.1.0/24 dns updated successfully via "net ads dns register -P". So, it's samba problem:) Now I trying to update DNS from CentOS with two NICs: 192.168.33.131 and 10.0.3.15, and both addresses is being added to DNS sucsessfully. PS: "net ads dns register -P" So, my tests: Debian Etch: samba & winbind 3.2.5-4~bpo41+1 libkrb531.4.4-7etch6 .>net ads dns register -P .>Successfully registered hostname with DNS Debian Lenny: samba & winbind 3.4.8~dfsg-2~bpo50+1 and 3.2.5-4lenny12 (work with both) libkrb531.6.dfsg.4~beta1-5lenny4 .>net ads dns register -P .>Successfully registered hostname with DNS Debian Sid/Unstable (my case) samba & winbind 3.4.8~dfsg-2 and 3.5.4~dfsg-1 (not work with both) libkrb531.8.1+dfsg-5 .>net ads dns register -P .>DNS update failed! I try CentOS, Suse and Slackware, and ever, in second network, DNS wasn't update. :( -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [samba] DNS update failed!
В сообщении от 30 июля 2010 09:39:05 автор Alexander R. Fahrutdinov написал: > В сообщении от 29 июля 2010 17:05:53 автор k.maksimov написал: > > Alexander R. Fahrutdinov wrote: > > > В сообщении от 29 июля 2010 09:08:29 автор Alexander R. Fahrutdinov > > написал: > > >> В сообщении от 28 июля 2010 18:10:29 автор k.maksimov написал: > > >>> Alexander R. Fahrutdinov wrote: > > В сообщении от 28 июля 2010 10:15:25 автор k.maksimov написал: > > > Anton wrote: > > >> On 28 July 2010 01:45, k.maksimov wrote: > > >>> I have two networks: 192.168.1.0 with netmask 255.255.255.0 and > > >>> 172.16.0.0 with netmask 255.255.254.0, when I join in domain in > > >>> first network hostname registered successfully, but in second > > >>> network: > > >>> > > >>> sudo net ads join -U admin > > >>> Enter admin's password: > > >>> Using short domain name -- BUTB > > >>> Joined 'TH-2-011' to realm 'butb.by' > > >>> DNS update failed! > > >> > > >> As far as I can tell (I'm not entirely certain though) this is an > > >> Active Directory / Windows Server configuration issue around > > >> loosening permissions enough for the DHCP service to update the > > >> DNS records. > > >> > > >> I don't know exactly what settings need to be configured though, > > >> as I didn't manage to get it working either. In the end I decided > > >> to keep the standard security and just use static IPs and DNS > > >> records for winbind machines. > > > > > > I'm use static IP and I haven't DHCP. and this problem not an AD: > > > Windows machines successfully update DNS. > > > > > > also I have ~200 machines and I can't add every DNS record > > > manually. > > >> > > >> It seems, secure DNS update has broken in samba. I tried to use > > >> different versions of samba (3.2.4, 3.4.4, 3.5.4, etc), but always got > > >> an error during DNS update, in spite of "wbinfo -t" and "net ads info" > > >> commands output was OK. > > >> > > >> Secure DNS update via nss-update script has sucssefully completed, but > > >> it requires a domain admin creditionals. > > >> Guys from http://rc.quest.com/topics/ddns/old.php create a patch for > > >> nss- update and GSSAPI library to use machine account instead admin > > >> one, but I don't try this. > > >> > > >> So, I don't promise to disable the secure DNS update, because it > > >> decrease AD security. > > >> > > >> Perghaps, somebody tell us, what we doing wrong? > > > > > > Earlier I tested DNS update on samba package included in Debian Etch, > > > Lenny and testing Debian branch. > > > > > > Now I download CentOS distribution and try to update DNS via "net ads > > > dns register -P" command. I'm surprised when command reports > > > "Successfully registered hostname with DNS" with samba 3.0.33 and > > > 3.5.4 versions. > > > > > > So, it isn't samba problem, but problem of specific distribution. > > > > > > And what's your distribution? > > > > I'm use Linux Mint 9 (based on Ubuntu 10.4), samba is 3.4.7, and in > > network 192.168.1.0/24 dns updated successfully via "net ads dns > > register -P". So, it's samba problem:) > > Now I trying to update DNS from CentOS with two NICs: 192.168.33.131 and > 10.0.3.15, and both addresses is being added to DNS sucsessfully. > > PS: "net ads dns register -P" So, my tests: Debian Etch: samba & winbind 3.2.5-4~bpo41+1 libkrb531.4.4-7etch6 .>net ads dns register -P .>Successfully registered hostname with DNS Debian Lenny: samba & winbind 3.4.8~dfsg-2~bpo50+1 and 3.2.5-4lenny12 (work with both) libkrb531.6.dfsg.4~beta1-5lenny4 .>net ads dns register -P .>Successfully registered hostname with DNS Debian Sid/Unstable (my case) samba & winbind 3.4.8~dfsg-2 and 3.5.4~dfsg-1 (not work with both) libkrb531.8.1+dfsg-5 .>net ads dns register -P .>DNS update failed! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [samba] DNS update failed!
В сообщении от 29 июля 2010 17:05:53 автор k.maksimov написал: > Alexander R. Fahrutdinov wrote: > > В сообщении от 29 июля 2010 09:08:29 автор Alexander R. Fahrutdinov написал: > >> В сообщении от 28 июля 2010 18:10:29 автор k.maksimov написал: > >>> Alexander R. Fahrutdinov wrote: > В сообщении от 28 июля 2010 10:15:25 автор k.maksimov написал: > > Anton wrote: > >> On 28 July 2010 01:45, k.maksimov wrote: > >>> I have two networks: 192.168.1.0 with netmask 255.255.255.0 and > >>> 172.16.0.0 with netmask 255.255.254.0, when I join in domain in > >>> first network hostname registered successfully, but in second > >>> network: > >>> > >>> sudo net ads join -U admin > >>> Enter admin's password: > >>> Using short domain name -- BUTB > >>> Joined 'TH-2-011' to realm 'butb.by' > >>> DNS update failed! > >> > >> As far as I can tell (I'm not entirely certain though) this is an > >> Active Directory / Windows Server configuration issue around > >> loosening permissions enough for the DHCP service to update the DNS > >> records. > >> > >> I don't know exactly what settings need to be configured though, as > >> I didn't manage to get it working either. In the end I decided to > >> keep the standard security and just use static IPs and DNS records > >> for winbind machines. > > > > I'm use static IP and I haven't DHCP. and this problem not an AD: > > Windows machines successfully update DNS. > > > > also I have ~200 machines and I can't add every DNS record manually. > >> > >> It seems, secure DNS update has broken in samba. I tried to use > >> different versions of samba (3.2.4, 3.4.4, 3.5.4, etc), but always got > >> an error during DNS update, in spite of "wbinfo -t" and "net ads info" > >> commands output was OK. > >> > >> Secure DNS update via nss-update script has sucssefully completed, but > >> it requires a domain admin creditionals. > >> Guys from http://rc.quest.com/topics/ddns/old.php create a patch for > >> nss- update and GSSAPI library to use machine account instead admin > >> one, but I don't try this. > >> > >> So, I don't promise to disable the secure DNS update, because it > >> decrease AD security. > >> > >> Perghaps, somebody tell us, what we doing wrong? > > > > Earlier I tested DNS update on samba package included in Debian Etch, > > Lenny and testing Debian branch. > > > > Now I download CentOS distribution and try to update DNS via "net ads dns > > register -P" command. I'm surprised when command reports "Successfully > > registered hostname with DNS" with samba 3.0.33 and 3.5.4 versions. > > > > So, it isn't samba problem, but problem of specific distribution. > > > > And what's your distribution? > > I'm use Linux Mint 9 (based on Ubuntu 10.4), samba is 3.4.7, and in network > 192.168.1.0/24 dns updated successfully via "net ads dns register -P". So, > it's samba problem:) Now I trying to update DNS from CentOS with two NICs: 192.168.33.131 and 10.0.3.15, and both addresses is being added to DNS sucsessfully. PS: "net ads dns register -P" -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [samba] DNS update failed!
Alexander R. Fahrutdinov wrote: В сообщении от 29 июля 2010 09:08:29 автор Alexander R. Fahrutdinov написал: В сообщении от 28 июля 2010 18:10:29 автор k.maksimov написал: Alexander R. Fahrutdinov wrote: В сообщении от 28 июля 2010 10:15:25 автор k.maksimov написал: Anton wrote: On 28 July 2010 01:45, k.maksimov wrote: I have two networks: 192.168.1.0 with netmask 255.255.255.0 and 172.16.0.0 with netmask 255.255.254.0, when I join in domain in first network hostname registered successfully, but in second network: sudo net ads join -U admin Enter admin's password: Using short domain name -- BUTB Joined 'TH-2-011' to realm 'butb.by' DNS update failed! As far as I can tell (I'm not entirely certain though) this is an Active Directory / Windows Server configuration issue around loosening permissions enough for the DHCP service to update the DNS records. I don't know exactly what settings need to be configured though, as I didn't manage to get it working either. In the end I decided to keep the standard security and just use static IPs and DNS records for winbind machines. I'm use static IP and I haven't DHCP. and this problem not an AD: Windows machines successfully update DNS. also I have ~200 machines and I can't add every DNS record manually. It seems, secure DNS update has broken in samba. I tried to use different versions of samba (3.2.4, 3.4.4, 3.5.4, etc), but always got an error during DNS update, in spite of "wbinfo -t" and "net ads info" commands output was OK. Secure DNS update via nss-update script has sucssefully completed, but it requires a domain admin creditionals. Guys from http://rc.quest.com/topics/ddns/old.php create a patch for nss- update and GSSAPI library to use machine account instead admin one, but I don't try this. So, I don't promise to disable the secure DNS update, because it decrease AD security. Perghaps, somebody tell us, what we doing wrong? Earlier I tested DNS update on samba package included in Debian Etch, Lenny and testing Debian branch. Now I download CentOS distribution and try to update DNS via "net ads dns register -P" command. I'm surprised when command reports "Successfully registered hostname with DNS" with samba 3.0.33 and 3.5.4 versions. So, it isn't samba problem, but problem of specific distribution. And what's your distribution? I'm use Linux Mint 9 (based on Ubuntu 10.4), samba is 3.4.7, and in network 192.168.1.0/24 dns updated successfully via "net ads dns register -P". So, it's samba problem:) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [samba] DNS update failed!
В сообщении от 29 июля 2010 09:08:29 автор Alexander R. Fahrutdinov написал: > В сообщении от 28 июля 2010 18:10:29 автор k.maksimov написал: > > Alexander R. Fahrutdinov wrote: > > > В сообщении от 28 июля 2010 10:15:25 автор k.maksimov написал: > > >> Anton wrote: > > >>> On 28 July 2010 01:45, k.maksimov wrote: > > I have two networks: 192.168.1.0 with netmask 255.255.255.0 and > > 172.16.0.0 with netmask 255.255.254.0, when I join in domain in > > first network hostname registered successfully, but in second > > network: > > > > sudo net ads join -U admin > > Enter admin's password: > > Using short domain name -- BUTB > > Joined 'TH-2-011' to realm 'butb.by' > > DNS update failed! > > >>> > > >>> As far as I can tell (I'm not entirely certain though) this is an > > >>> Active Directory / Windows Server configuration issue around > > >>> loosening permissions enough for the DHCP service to update the DNS > > >>> records. > > >>> > > >>> I don't know exactly what settings need to be configured though, as I > > >>> didn't manage to get it working either. In the end I decided to keep > > >>> the standard security and just use static IPs and DNS records for > > >>> winbind machines. > > >> > > >> I'm use static IP and I haven't DHCP. and this problem not an AD: > > >> Windows machines successfully update DNS. > > >> > > >> also I have ~200 machines and I can't add every DNS record manually. > > It seems, secure DNS update has broken in samba. I tried to use different > versions of samba (3.2.4, 3.4.4, 3.5.4, etc), but always got an error > during DNS update, in spite of "wbinfo -t" and "net ads info" commands > output was OK. > > Secure DNS update via nss-update script has sucssefully completed, but it > requires a domain admin creditionals. > Guys from http://rc.quest.com/topics/ddns/old.php create a patch for nss- > update and GSSAPI library to use machine account instead admin one, but I > don't try this. > > So, I don't promise to disable the secure DNS update, because it decrease > AD security. > > Perghaps, somebody tell us, what we doing wrong? Earlier I tested DNS update on samba package included in Debian Etch, Lenny and testing Debian branch. Now I download CentOS distribution and try to update DNS via "net ads dns register -P" command. I'm surprised when command reports "Successfully registered hostname with DNS" with samba 3.0.33 and 3.5.4 versions. So, it isn't samba problem, but problem of specific distribution. And what's your distribution? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [samba] DNS update failed!
В сообщении от 28 июля 2010 18:10:29 автор k.maksimov написал: > Alexander R. Fahrutdinov wrote: > > В сообщении от 28 июля 2010 10:15:25 автор k.maksimov написал: > >> Anton wrote: > >>> On 28 July 2010 01:45, k.maksimov wrote: > I have two networks: 192.168.1.0 with netmask 255.255.255.0 and > 172.16.0.0 with netmask 255.255.254.0, when I join in domain in first > network hostname registered successfully, but in second network: > > sudo net ads join -U admin > Enter admin's password: > Using short domain name -- BUTB > Joined 'TH-2-011' to realm 'butb.by' > DNS update failed! > >>> > >>> As far as I can tell (I'm not entirely certain though) this is an > >>> Active Directory / Windows Server configuration issue around loosening > >>> permissions enough for the DHCP service to update the DNS records. > >>> > >>> I don't know exactly what settings need to be configured though, as I > >>> didn't manage to get it working either. In the end I decided to keep > >>> the standard security and just use static IPs and DNS records for > >>> winbind machines. > >> > >> I'm use static IP and I haven't DHCP. and this problem not an AD: > >> Windows machines successfully update DNS. > >> > >> also I have ~200 machines and I can't add every DNS record manually. > > It seems, secure DNS update has broken in samba. I tried to use different versions of samba (3.2.4, 3.4.4, 3.5.4, etc), but always got an error during DNS update, in spite of "wbinfo -t" and "net ads info" commands output was OK. Secure DNS update via nss-update script has sucssefully completed, but it requires a domain admin creditionals. Guys from http://rc.quest.com/topics/ddns/old.php create a patch for nss- update and GSSAPI library to use machine account instead admin one, but I don't try this. So, I don't promise to disable the secure DNS update, because it decrease AD security. Perghaps, somebody tell us, what we doing wrong? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [samba] DNS update failed!
Alexander R. Fahrutdinov wrote: В сообщении от 28 июля 2010 10:15:25 автор k.maksimov написал: Anton wrote: On 28 July 2010 01:45, k.maksimov wrote: I have two networks: 192.168.1.0 with netmask 255.255.255.0 and 172.16.0.0 with netmask 255.255.254.0, when I join in domain in first network hostname registered successfully, but in second network: sudo net ads join -U admin Enter admin's password: Using short domain name -- BUTB Joined 'TH-2-011' to realm 'butb.by' DNS update failed! As far as I can tell (I'm not entirely certain though) this is an Active Directory / Windows Server configuration issue around loosening permissions enough for the DHCP service to update the DNS records. I don't know exactly what settings need to be configured though, as I didn't manage to get it working either. In the end I decided to keep the standard security and just use static IPs and DNS records for winbind machines. I'm use static IP and I haven't DHCP. and this problem not an AD: Windows machines successfully update DNS. also I have ~200 machines and I can't add every DNS record manually. Please show output for command "net ads dns register -P -d 4". PC must be already added to domain sudo net ads dns register -P -d 4 [2010/07/28 14:21:32, 3] param/loadparm.c:9039(lp_load_ex) lp_load_ex: refreshing parameters [2010/07/28 14:21:32, 3] param/loadparm.c:4848(init_globals) Initialising global parameters [2010/07/28 14:21:32, 2] param/loadparm.c:4707(max_open_files) rlimit_max: rlimit_max (1024) below minimum Windows limit (16384) [2010/07/28 14:21:32, 3] ../lib/util/params.c:550(pm_process) params.c:pm_process() - Processing configuration file "/etc/samba/smb.conf" [2010/07/28 14:21:32, 3] param/loadparm.c:7726(do_section) Processing section "[global]" doing parameter workgroup = BUTB doing parameter netbios name = %h [2010/07/28 14:21:32, 4] param/loadparm.c:7088(handle_netbios_name) handle_netbios_name: set global_myname to: TH-3-059 doing parameter dos charset = cp866 doing parameter unix charset = UTF8 doing parameter server string = %h server (Samba, Linux) doing parameter dns proxy = no doing parameter name resolve order = lmhosts wins bcast host doing parameter log file = /var/log/samba/log.%m doing parameter max log size = 1000 doing parameter syslog = 0 doing parameter panic action = /usr/share/samba/panic-action %d doing parameter security = ADS doing parameter encrypt passwords = true doing parameter passdb backend = tdbsam doing parameter obey pam restrictions = yes doing parameter unix password sync = yes doing parameter password server = ad, ad2 doing parameter passwd program = /usr/bin/passwd %u doing parameter passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* . doing parameter pam password change = yes doing parameter map to guest = bad user doing parameter idmap uid = 1-2 doing parameter idmap gid = 1-2 doing parameter winbind uid = 1-2 doing parameter winbind gid = 1-2 doing parameter template shell = /bin/bash doing parameter template homedir = /home/%U doing parameter winbind separator = / doing parameter winbind offline logon = true doing parameter winbind cache time = 86400 doing parameter passdb backend = tdbsam doing parameter realm = butb.by doing parameter winbind use default domain = yes doing parameter usershare allow guests = yes [2010/07/28 14:21:32, 4] param/loadparm.c:9074(lp_load_ex) pm_process() returned Yes [2010/07/28 14:21:32, 2] lib/interface.c:340(add_interface) added interface eth0 ip=fe80::201:2eff:fe2b:3ff6%eth0 bcast=fe80:::::%eth0 netmask=::::: [2010/07/28 14:21:32, 2] lib/interface.c:340(add_interface) added interface eth0 ip=172.16.0.101 bcast=172.16.1.255 netmask=255.255.254.0 [2010/07/28 14:21:32, 4] libsmb/namequery_dc.c:73(ads_dc_name) ads_dc_name: domain=BUTB [2010/07/28 14:21:32, 3] libsmb/namequery.c:1972(get_dc_list) get_dc_list: preferred server list: "ad.butb.by, ad, ad2" [2010/07/28 14:21:32, 4] libsmb/namequery.c:2105(get_dc_list) get_dc_list: returning 2 ip addresses in an ordered list [2010/07/28 14:21:32, 4] libsmb/namequery.c:2106(get_dc_list) get_dc_list: 192.168.1.2:389 192.168.1.5:389 [2010/07/28 14:21:32, 3] libads/ldap.c:621(ads_connect) Successfully contacted LDAP server 192.168.1.2 [2010/07/28 14:21:32, 3] libsmb/namequery.c:1972(get_dc_list) get_dc_list: preferred server list: "ad.butb.by, ad, ad2" [2010/07/28 14:21:32, 4] libsmb/namequery.c:2105(get_dc_list) get_dc_list: returning 2 ip addresses in an ordered list [2010/07/28 14:21:32, 4] libsmb/namequery.c:2106(get_dc_list) get_dc_list: 192.168.1.2:389 192.168.1.5:389 [2010/07/28 14:21:32, 3] libsmb/namequery.c:1972(get_dc_list) get_dc_list: preferred server list: "ad.butb.by, ad, ad2" [2010/07/28 14:21:32, 4] libsmb/namequery.c:2105(get_dc_list) get_dc_list: returning 2 ip addresses in an ordered lis
Re: [Samba] [samba] DNS update failed!
В сообщении от 28 июля 2010 10:15:25 автор k.maksimov написал: > Anton wrote: > > On 28 July 2010 01:45, k.maksimov wrote: > >> I have two networks: 192.168.1.0 with netmask 255.255.255.0 and > >> 172.16.0.0 with netmask 255.255.254.0, when I join in domain in first > >> network hostname registered successfully, but in second network: > >> > >> sudo net ads join -U admin > >> Enter admin's password: > >> Using short domain name -- BUTB > >> Joined 'TH-2-011' to realm 'butb.by' > >> DNS update failed! > > > > As far as I can tell (I'm not entirely certain though) this is an > > Active Directory / Windows Server configuration issue around loosening > > permissions enough for the DHCP service to update the DNS records. > > > > I don't know exactly what settings need to be configured though, as I > > didn't manage to get it working either. In the end I decided to keep > > the standard security and just use static IPs and DNS records for > > winbind machines. > > I'm use static IP and I haven't DHCP. and this problem not an AD: > Windows machines successfully update DNS. > > also I have ~200 machines and I can't add every DNS record manually. Please show output for command "net ads dns register -P -d 4". PC must be already added to domain -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [samba] DNS update failed!
Anton wrote: On 28 July 2010 01:45, k.maksimov wrote: I have two networks: 192.168.1.0 with netmask 255.255.255.0 and 172.16.0.0 with netmask 255.255.254.0, when I join in domain in first network hostname registered successfully, but in second network: sudo net ads join -U admin Enter admin's password: Using short domain name -- BUTB Joined 'TH-2-011' to realm 'butb.by' DNS update failed! As far as I can tell (I'm not entirely certain though) this is an Active Directory / Windows Server configuration issue around loosening permissions enough for the DHCP service to update the DNS records. I don't know exactly what settings need to be configured though, as I didn't manage to get it working either. In the end I decided to keep the standard security and just use static IPs and DNS records for winbind machines. I'm use static IP and I haven't DHCP. and this problem not an AD: Windows machines successfully update DNS. also I have ~200 machines and I can't add every DNS record manually. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [samba] DNS update failed!
On 28 July 2010 01:45, k.maksimov wrote: > I have two networks: 192.168.1.0 with netmask 255.255.255.0 and 172.16.0.0 > with netmask 255.255.254.0, when I join in domain in first network hostname > registered successfully, but in second network: > > sudo net ads join -U admin > Enter admin's password: > Using short domain name -- BUTB > Joined 'TH-2-011' to realm 'butb.by' > DNS update failed! As far as I can tell (I'm not entirely certain though) this is an Active Directory / Windows Server configuration issue around loosening permissions enough for the DHCP service to update the DNS records. I don't know exactly what settings need to be configured though, as I didn't manage to get it working either. In the end I decided to keep the standard security and just use static IPs and DNS records for winbind machines. -- Cheers Anton -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba