RE: [SOGo] Samba4 issue with existing AD and Exchange 2007

Fri, 21 Feb 2014 18:20:06 -0800 

> -----Original Message-----
> From: users-requ...@sogo.nu [mailto:users-requ...@sogo.nu] On Behalf
> Of Steve Boley
> Sent: Saturday, 22 February 2014 1:01 AM
> To: users@sogo.nu
> Subject: Re: [SOGo] Samba4 issue with existing AD and Exchange 2007
> 
> Have you pulled a current kerberos ticket with the domain admin account
> successfully?
> kinit administrator
> klist
> The second would should a current key good for 24 hrs for the administrator
> account.
> This makes sure the kerberos config is correct and functioning.
> 
> When I did it noticed that the dns role wasn't applied correctly either and I
> already run bind so I have the active directory specifics in my zone of my
> primary dns. The oddity is that samba4 requires a local form of dns and won't
> use an external source which I guess because they try and mimic a
> standalone single windows dc and the member server and additional dc
> seem an afterthought due to their ongoing difficulties with setup and
> functions.
> Steve


Hi Steve,

Yes I did complete those commands successfully. I've done it again to make sure 
I'm not fibbing :)

root@sambadc ~]# kinit administrator
Password for administra...@int.mycompany.com.au:
[root@sambadc ~]# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: administra...@int.mycompany.com.au

Valid starting     Expires            Service principal
02/22/14 11:37:28  02/22/14 21:37:33  
krbtgt/int.mycompany.com...@int.mycompany.com.au
        renew until 03/01/14 11:37:28


Regarding DNS, I am using Samba's internal DNS, with "dns forwarder" setup in 
smb.conf to forward to windowsdc. I have tested this and it seems to be working 
OK:

[root@sambadc ~]# host -t SRV _ldap._tcp.int.mycompany.com.au.
_ldap._tcp.int.mycompany.com.au has SRV record 0 100 389 
windowsdc.int.mycompany.com.au.

[root@sambadc ~]# host -t SRV _kerberos._udp.int.mycompany.com.au.
_kerberos._udp.int.mycompany.com.au has SRV record 0 100 88 
windowsdc.int.mycompany.com.au.

[root@sambadc ~]# host -t A sambadc.int.mycompany.com.au.
sambadc.int.mycompany.com.au has address 10.1.1.99 


Thanks for your interest and help thus far.

Cheers, John
-- 
users@sogo.nu
https://inverse.ca/sogo/lists

Reply via email to