Hi, Packetfence gives error "Failed to join domain: failed to find DC for domain GOZEN" when joining domain. My environments:
-- Workgroup: GOZEN realm: GOZEN.SYSTEMS Domain Controllers and my dns resolvers addresses; gozen-dc01.gozen.systems --> 172.31.238.11 gozen-dc02.gozen.systems --> 172.31.238.12 -- There is outputs for troubleshooting on packetfence server : -- $ dig SRV _ldap._tcp.dc._msdcs.gozen.systems ; <<>> DiG 9.9.5-9+deb8u17-Debian <<>> SRV _ldap._tcp.dc._msdcs.gozen.systems ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13095 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 3 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4000 ;; QUESTION SECTION: ;_ldap._tcp.dc._msdcs.gozen.systems. IN SRV ;; ANSWER SECTION: _ldap._tcp.dc._msdcs.gozen.systems. 600 IN SRV 0 100 389 gozen-dc01.gozen.systems. _ldap._tcp.dc._msdcs.gozen.systems. 600 IN SRV 0 100 389 gozen-dc02.gozen.systems. ;; ADDITIONAL SECTION: gozen-dc01.gozen.systems. 3600 IN A 172.31.238.11 gozen-dc02.gozen.systems. 3600 IN A 172.31.238.12 ;; Query time: 1 msec ;; SERVER: 172.31.238.11#53(172.31.238.11) ;; WHEN: Wed Apr 03 15:33:16 +03 2019 ;; MSG SIZE rcvd: 183 $ cat /etc/resolv/conf search gozen.systems nameserver 172.31.238.11 nameserver 172.31.238.12 -- I've tried from the command line and It doesn't resolve workgroup dns. Anyone have any Idea's? -- $ ip netns exec gozen11 net -d10 ads testjoin -S GOZEN -s /etc/samba/gozen11.conf -U domain.admin INFO: Current debug levels: all: 10 tdb: 10 printdrivers: 10 lanman: 10 smb: 10 rpc_parse: 10 rpc_srv: 10 rpc_cli: 10 passdb: 10 sam: 10 auth: 10 winbind: 10 vfs: 10 idmap: 10 quota: 10 acls: 10 locking: 10 msdfs: 10 dmapi: 10 registry: 10 scavenger: 10 dns: 10 ldb: 10 lp_load_ex: refreshing parameters Initialising global parameters INFO: Current debug levels: all: 10 tdb: 10 printdrivers: 10 lanman: 10 smb: 10 rpc_parse: 10 rpc_srv: 10 rpc_cli: 10 passdb: 10 sam: 10 auth: 10 winbind: 10 vfs: 10 idmap: 10 quota: 10 acls: 10 locking: 10 msdfs: 10 dmapi: 10 registry: 10 scavenger: 10 dns: 10 ldb: 10 Processing section "[global]" doing parameter workgroup = GOZEN doing parameter realm = GOZEN.SYSTEMS doing parameter netbios name = nac01 doing parameter server string = nac01 doing parameter pid directory = /usr/local/pf/var/run/gozen11 doing parameter lock directory = /var/cache/samba doing parameter private dir = /var/cache/samba doing parameter security = ADS doing parameter winbind use default domain = no doing parameter idmap uid = 600-20000 WARNING: The "idmap uid" option is deprecated doing parameter idmap gid = 600-20000 WARNING: The "idmap gid" option is deprecated doing parameter template shell = /bin/bash doing parameter winbind expand groups = 10 doing parameter password server = 172.31.238.11 doing parameter domain master = no doing parameter local master = no doing parameter preferred master = no doing parameter inherit permissions = yes doing parameter admin users = @GOZEN\"domain admins" doing parameter hide files = /~*/Thumbs.db/desktop.ini/ntuser.ini/NTUSER.*/SMax.*/ doing parameter veto files = /lost+found/ doing parameter allow trusted domains = yes doing parameter show add printer wizard = no doing parameter disable spoolss = yes doing parameter load printers = no doing parameter printing = bsd doing parameter printcap name = /dev/null doing parameter usershare max shares = 0 doing parameter browseable = no doing parameter guest ok = no doing parameter machine password timeout = 0 doing parameter client ipc signing = auto pm_process() returned Yes lp_servicenumber: couldn't find homes Netbios name list:- my_netbios_names[0]="NAC01" added interface gozen11-a ip=169.254.0.1 bcast=169.254.0.3 netmask=255.255.255.252 Registering messaging pointer for type 2 - private_data=(nil) Registering messaging pointer for type 9 - private_data=(nil) Registered MSG_REQ_POOL_USAGE Registering messaging pointer for type 11 - private_data=(nil) Registering messaging pointer for type 12 - private_data=(nil) Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED Registering messaging pointer for type 1 - private_data=(nil) Registering messaging pointer for type 5 - private_data=(nil) Opening cache file at /var/cache/samba/gencache.tdb Opening cache file at /var/cache/samba/gencache_notrans.tdb sitename_fetch: No stored sitename for GOZEN.SYSTEMS ads_dc_name: domain=GOZEN sitename_fetch: No stored sitename for GOZEN.SYSTEMS ads_find_dc: (cldap) looking for realm 'GOZEN.SYSTEMS' get_sorted_dc_list: attempting lookup for name GOZEN.SYSTEMS (sitename NULL) saf_fetch: failed to find server for "GOZEN.SYSTEMS" domain get_dc_list: preferred server list: ", 172.31.238.11" check_negative_conn_cache returning result 0 for domain GOZEN.SYSTEMS server 172.31.238.11 remove_duplicate_addrs2: looking for duplicate address/port pairs get_dc_list: returning 1 ip addresses in an ordered list get_dc_list: 172.31.238.11:389 check_negative_conn_cache returning result 0 for domain GOZEN.SYSTEMS server 172.31.238.11 ads_try_connect: sending CLDAP request to 172.31.238.11 (realm: GOZEN.SYSTEMS) ads_cldap_netlogon: did not get a reply ads_try_connect: CLDAP request 172.31.238.11 failed. Adding cache entry with key=[NEG_CONN_CACHE/GOZEN.SYSTEMS,172.31.238.11] and timeout=[Wed Apr 3 03:36:19 PM 2019 +03] (60 seconds ahead) add_failed_connection_entry: added domain GOZEN.SYSTEMS (172.31.238.11) to failed conn cache get_sorted_dc_list: attempting lookup for name GOZEN (sitename NULL) saf_fetch: failed to find server for "GOZEN" domain get_dc_list: preferred server list: ", 172.31.238.11" check_negative_conn_cache returning result 0 for domain GOZEN server 172.31.238.11 remove_duplicate_addrs2: looking for duplicate address/port pairs get_dc_list: returning 1 ip addresses in an ordered list get_dc_list: 172.31.238.11:389 name_status_find: looking up GOZEN#1c at 172.31.238.11 namecache_status_fetch: no entry for NBT/GOZEN#1C.20.172.31.238.11 found. tstream_unix_connect failed: No such file or directory nmbd not around name_status_find: name not found Enter NAC01$@GOZEN.SYSTEMS's password: sitename_fetch: No stored sitename for GOZEN.SYSTEMS internal_resolve_name: looking up GOZEN#20 (sitename (null)) no entry for GOZEN#20 found. resolve_lmhosts: Attempting lmhosts lookup for name GOZEN<0x20> resolve_lmhosts: Attempting lmhosts lookup for name GOZEN<0x20> startlmhosts: Can't open lmhosts file /etc/samba/lmhosts. Error was No such file or directory resolve_wins: WINS server resolution selected and no WINS servers listed. resolve_hosts: Attempting host lookup for name GOZEN<0x20> resolve_hosts: getaddrinfo failed for name GOZEN [Name or service not known] name_resolve_bcast: Attempting broadcast lookup for name GOZEN<0x20> tstream_unix_connect failed: No such file or directory nmbd not around ads_connect: unable to resolve name GOZEN Join to domain is not valid: The object was not found. return code = -1 -- Emre Eryilmaz emre.eryil...@piesso.com _______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
