Hi David.. Bound was probably not the correct word to use..
When you modify the samba config to reflect the name of the virtual hostname, this is the name that samba uses to join to the domain, and as a result when the other node becomes active, using the same hostname but a different ID so the computer account is not valid in AD and a rejoin is necessary. I spend 2 days trying to work around this and did not succeed. so i left the samba config on both nodes with the hostname of the local system smb.conf on node 1: node1.domain.local smb.conf on node 2: node2.domain.local both nodes joined to domain, and are accessable via DNS name from Windows clients after heartbeat is configured you present an IP Address, and manually register this IP Address to a DNS A record within your DNS environment. Since heartbeat is only allowing this IP address to be active on one node at a time a Windows client will resolve this A record to the virtual IP Address on the cluster, and the client will connect to the samba instance even though it is not configured with the virtual interface details, (should you be presenting a banner to samba clients you will see the physical server details when connecting, you should be able to change this should you wish) Hope this makes some form of sense Jay 2009/8/2 David Christensen <[email protected]> > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Jason Fitzpatrick wrote: > > Hi David.. > > > > please find the doc attached, I believe that the section that is relevant > to > > you is at the very end, > > > > also I have tried a config similar to yours, where i configured for the > > virtual interface, and ran into similar problems (after fail over i had > to > > rejoin to the domain each time) so I failed back to samba configured for > the > > physical interfaces and have users connect via the virtual address, > > > > Let me know how you get on as the doc is still a work in progress > > > > Jay > > > > 2009/7/31 David Christensen <[email protected]> > > > > Jason Fitzpatrick wrote: > >>>> Hi David > >>>> > >>>> I am running a 2 node Heartbeat cluster with Samba and AD integration, > > and I > >>>> ran into no end of hastle in getting it to work correctly, so sat down > > and > >>>> went through it step by step and made a work instruction for this, > >>>> Unfortunately I do not have the instructions to hand but will post > them > > up > >>>> on Tuesday for you if this is not too late, > >>>> > >>>> Jay > >>>> > >>>> 2009/7/31 David Christensen <[email protected]> > >>>> > >>>> I was successful with integrating heartbeat into my existing samba > >>>> installation for a samba HA configuration. I tested fail over with > >>>> existing domain clients and everything was good. > >>>> > >>>> However the moment I tried to join a new computer to the domain it > >>>> failed. Even though I was prompted for the admin username and > password, > >>>> I received an error that no PDC could be found for the domain. > >>>> > >>>> Looking at the ldap logs I can see queries when trying to join the > >>>> domain so I am confused as to why this keeps failing. > >>>> > >>>> I configured samba to listen only to the virtual interface that is > >>>> created by heartbeat and localhost. > >>>> > >>>> Any ideas of what to look at would be appreciated. Thanks! > > Jay > > > > Tuesday is fine, I will keep "educating" myself until then. One thing > > is for sure, I am learning this stuff inside and out. > > > > Thanks!!! > > > > David > > > > _______________________________________________ > > Linux-HA mailing list > > [email protected] > > http://lists.linux-ha.org/mailman/listinfo/linux-ha > > See also: http://linux-ha.org/ReportingProblems > >>>> _______________________________________________ > >>>> Linux-HA mailing list > >>>> [email protected] > >>>> http://lists.linux-ha.org/mailman/listinfo/linux-ha > >>>> See also: http://linux-ha.org/ReportingProblems > Jason, > > Thanks for the document I will give it a try!! > > I failed back to not running HA until I can figure out what is going on. > For your config when you say you have samba bound to the physical > interfaces and users connecting to the virtual, is this when users > connect manually or is this when a user attempts to authenticate to the > domain via the XP or Vista client? > > David > > _______________________________________________ > Linux-HA mailing list > [email protected] > http://lists.linux-ha.org/mailman/listinfo/linux-ha > See also: http://linux-ha.org/ReportingProblems > >> > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.9 (GNU/Linux) > Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org > > iEYEARECAAYFAkp00CYACgkQ5B+8XEnAvquYVwCfVttZn+dvPegvVXdHrWaOxfCf > vKgAnRhHcAbdYm53PPB+7F9EanlRIWM8 > =Mt7F > -----END PGP SIGNATURE----- > _______________________________________________ > Linux-HA mailing list > [email protected] > http://lists.linux-ha.org/mailman/listinfo/linux-ha > See also: http://linux-ha.org/ReportingProblems > _______________________________________________ Linux-HA mailing list [email protected] http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
