Re: [Samba] Samba AD DC initial join fails at schema replication
>That's a known issue I have a patch for this it was working back in October >and it's in my todo to restest >it, ping me in a couple of days, for the >moment you need not to have Windows 2012 schema. > >That is to say never join a Windows 2012 server to your domain. >-- >Matthieu Patou >Samba Team >http://samba.org Was just wondering if you had a chance to test out your patch? I am also willing to do additional testing if it could be of help, the environment I'm working with is essentially a lab. smime.p7s Description: S/MIME cryptographic signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba AD DC initial join fails at schema replication
For the sake of clarity, I was originally operating at forest/domain 2012 levels in this environment. I rolled back to 2008r2 due to an earlier issue. Subject: Re: [Samba] Samba AD DC initial join fails at schema replication On Thu, 2013-01-17 at 13:57 -0800, Matthieu Patou wrote: > On 01/16/2013 06:03 PM, Rican, Joshua T Civ USAF AF ISR Agency > NASIC/SCXE wrote: > > Date: 16Jan2013 > > Samba Version: 4.0.1 > > OS Version: RHEL 6.3 > > Windows OS: Server 2012 > > Forest/Domain: 2008r2 > > Warning: Failed to convert schema object > > CN=ms-DS-Claim-Type,CN=Schema,CN=Configuration, into ldb > > msg > That's a known issue I have a patch for this it was working back in > October and it's in my todo to restest it, ping me in a couple of > days, for the moment you need not to have Windows 2012 schema. > That is to say never join a Windows 2012 server to your domain. Do you mean (a) Do not join a Windows 2012 Server to the domain or (b) do not join a Windows 2012 Server as a Domain Controller in the domain? -- Adam Tauno Williams GPG D95ED383 Systems Administrator, Python Developer, LPI / NCLA -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba smime.p7s Description: S/MIME cryptographic signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba AD DC initial join fails at schema replication
On Thu, 2013-01-17 at 13:57 -0800, Matthieu Patou wrote: > On 01/16/2013 06:03 PM, Rican, Joshua T Civ USAF AF ISR Agency > NASIC/SCXE wrote: > > Date: 16Jan2013 > > Samba Version: 4.0.1 > > OS Version: RHEL 6.3 > > Windows OS: Server 2012 > > Forest/Domain: 2008r2 > > Warning: Failed to convert schema object > > CN=ms-DS-Claim-Type,CN=Schema,CN=Configuration, into ldb msg > That's a known issue I have a patch for this it was working back in > October and it's in my todo to restest it, ping me in a couple of days, > for the moment you need not to have Windows 2012 schema. > That is to say never join a Windows 2012 server to your domain. Do you mean (a) Do not join a Windows 2012 Server to the domain or (b) do not join a Windows 2012 Server as a Domain Controller in the domain? -- Adam Tauno Williams GPG D95ED383 Systems Administrator, Python Developer, LPI / NCLA -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba AD DC initial join fails at schema replication
On 01/16/2013 06:03 PM, Rican, Joshua T Civ USAF AF ISR Agency NASIC/SCXE wrote: Date: 16Jan2013 Samba Version: 4.0.1 OS Version: RHEL 6.3 Windows OS: Server 2012 Forest/Domain: 2008r2 Replaced libnet_vampire.c (corrected ERROR: no subClassOf 'top' for 'samDomain') source [https://bugzilla.samba.org/show_bug.cgi?id=8680] #/usr/lobal/bin/samba-tool domain join DC -U administrator Identifies DC, joins the domain and performs adding SPNs to the Domain Controllers OU . Setting account password for RHELDC1$ Enabling account Calling bare provision No IPv6 address will be assigned Provision OK for domain DN Starting replication Schema-DN[CN=Schema,CN=Configuration,] objects[402] linked_values[0] Schema-DN[CN=Schema,CN=Configuration,] objects[802] linked_values[0] Schema-DN[CN=Schema,CN=Configuration,] objects[1206] linked_values[0] Schema-DN[CN=Schema,CN=Configuration,] objects[1593] linked_values[0] Schema-DN[CN=Schema,CN=Configuration,] objects[1688] linked_values[0] Analyze and apply schema objects Can't continue Schema load: didn't manage to convert any objects: all 22 remaining of 1688 objects failed to convert Join failed - cleaning up . -d 1 returns several messages (some of the messages follow (would include more but I have to handjam them out), all of the messages state a failure to convert into ldb msg): ../source4/dsdb/schema/schema_syntax.c:1076: Unknown attributeID_id 0x000908BA Warning: Failed to convert schema object CN=Computer,CN=Schema,CN=Configuration, into ldb msg ../source4/dsdb/schema/schema_syntax.c:1076: Unknown attributeID_id 0x000908A5 Warning: Failed to convert schema object CN=RID-Manager,CN=Schema,CN=Configuration, into ldb msg ../source4/dsdb/schema/schema_syntax.c:1021: Unknown governsID_id 0x000A010D Warning: Failed to convert schema object CN=ms-DS-Claim-Type,CN=Schema,CN=Configuration, into ldb msg That's a known issue I have a patch for this it was working back in October and it's in my todo to restest it, ping me in a couple of days, for the moment you need not to have Windows 2012 schema. That is to say never join a Windows 2012 server to your domain. -- Matthieu Patou Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
