Re: [Samba] S3 as domain member with S4
Dewayne, I would never have posted the message if my DNS was not functional. Here are the answers (on the AD server and on the S3 server) for the tests of the HOWTO : host -t SRV _ldap._tcp.sc.isc84.org. _ldap._tcp.sc.isc84.org has SRV record 0 100 389 vspdc.sc.isc84.org. host -t SRV _kerberos._udp.sc.isc84.org. _kerberos._udp.sc.isc84.org has SRV record 0 100 88 vspdc.sc.isc84.org. host -t A vspdc.sc.isc84.org. vspdc.sc.isc84.org has address 192.168.77.1 All seems good unless I have missed something. The problem is when I join my S3 in the AD (kerberos is functionnal) net join -Uadministrateur *Using short domain name -- SC Joined 'SSC011' to realm 'sc.isc84.org'* /*DNS Update for ssc011.sc.isc84.org failed: ERROR_DNS_INVALID_MESSAGE DNS update failed!*/ The join seems to have worked in spite of the error message concerning the DNS. And in a windows box \\ssc011 does not work. But I don't know if these problems are bounded. I will investigate again ... Regards Le 11/02/2013 22:54, Dewayne Geraghty a écrit : -Original Message- From: samba-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org] On Behalf Of Hervé Hénoch Sent: Tuesday, 12 February 2013 1:31 AM To: Andrew Bartlett; samba-liste Subject: Re: [Samba] S3 as domain member with S4 Thanks I've followed the document and i can see in the AD the server included. But I've the following error when doing the following command : net join -Uadministrateur Using short domain name -- SC Joined 'SSC011' to realm 'sc.isc84.org' *DNS Update for ssc011.sc.isc84.org failed: ERROR_DNS_INVALID_MESSAGE DNS update failed!* Moreover I can't access from a window box to my server with \\ssc011 (the name of my server). My /ets/hosts 127.0.0.1 ssc011.sc.isc84.org ssc011 localhost 192.168.77.4ssc011.sc.isc84.org ssc011 192.168.77.1vspdc.sc.isc84.org vspdc sc is the samba3 domain 192.168.77.1 - is the samba4 PDC 192.168.77.4 - is the samba 3.6 file server which has the name ssc011 Regards Le 11/02/2013 12:02, Andrew Bartlett a écrit : On Mon, 2013-02-11 at 11:00 +0100, Hervé Hénoch wrote: Hello How to set a S3 file server as a domain member with a S4 PDC server ? You can join Samba 3.x or Samba 4.0 as a domain member of a Samba 4.0 AD DC in the same way you would join any other AD domain. eg 'net ads join. See https://www.samba.org/samba/docs/man/Samba-Guide/unixclients.html#adss dm -- Hervé Hénoch Responsable informatique Institut Sainte Catherine 250 chemin de Baigne-Pieds CS 80005 --- 84918 AVIGNON cedex 9 Téléphone : 04.90.27.57.44 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba Herve, Samba4 provides a lot of features though it does have some prerequisites; please review the HowTo, and particularly https://wiki.samba.org/index.php/Samba4/HOWTO#Step_7:_Configure_DNS noting the first line A working DNS setup is essential to the correct operation of Samba. It's a hard road (if you're not familiar with being a Windows Admin) but well worth the effort. Regards, Dewayne. -- Hervé Hénoch Responsable informatique Institut Sainte Catherine 250 chemin de Baigne-Pieds CS 80005 --- 84918 AVIGNON cedex 9 Téléphone : 04.90.27.57.44 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] S3 as domain member with S4
Dewayne, I would never have posted the message if my DNS was not functional. Here are the answers (on the AD server and on the S3 server) for the tests of the HOWTO : host -t SRV _ldap._tcp.sc.isc84.org. _ldap._tcp.sc.isc84.org has SRV record 0 100 389 vspdc.sc.isc84.org. host -t SRV _kerberos._udp.sc.isc84.org. _kerberos._udp.sc.isc84.org has SRV record 0 100 88 vspdc.sc.isc84.org. host -t A vspdc.sc.isc84.org. vspdc.sc.isc84.org has address 192.168.77.1 All seems good unless I have missed something. The problem is when I join my S3 in the AD (kerberos is functionnal) net join -Uadministrateur *Using short domain name -- SC Joined 'SSC011' to realm 'sc.isc84.org'* /*DNS Update for ssc011.sc.isc84.org failed: ERROR_DNS_INVALID_MESSAGE DNS update failed!*/ The join seems to have worked in spite of the error message concerning the DNS. And in a windows box \\ssc011 does not work. But I don't know if these problems are bounded. I've followed the document and i can see in the AD the server included. But I've the following error when doing the following command : net join -Uadministrateur Using short domain name -- SC Joined 'SSC011' to realm 'sc.isc84.org' *DNS Update for ssc011.sc.isc84.org failed: ERROR_DNS_INVALID_MESSAGE DNS update failed!* Moreover I can't access from a window box to my server with \\ssc011 (the name of my server). My /ets/hosts 127.0.0.1 ssc011.sc.isc84.org ssc011 localhost 192.168.77.4ssc011.sc.isc84.org ssc011 192.168.77.1vspdc.sc.isc84.org vspdc sc is the samba3 domain 192.168.77.1 - is the samba4 PDC 192.168.77.4 - is the samba 3.6 file server which has the name ssc011 Hello How to set a S3 file server as a domain member with a S4 PDC server ? You can join Samba 3.x or Samba 4.0 as a domain member of a Samba 4.0 AD DC in the same way you would join any other AD domain. eg 'net ads join. See https://www.samba.org/samba/docs/man/Samba-Guide/unixclients.html#adss dm -- Hervé Hénoch Responsable informatique Institut Sainte Catherine 250 chemin de Baigne-Pieds CS 80005 --- 84918 AVIGNON cedex 9 Téléphone : 04.90.27.57.44 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba Herve, Samba4 provides a lot of features though it does have some prerequisites; please review the HowTo, and particularly https://wiki.samba.org/index.php/Samba4/HOWTO#Step_7:_Configure_DNS noting the first line A working DNS setup is essential to the correct operation of Samba. It's a hard road (if you're not familiar with being a Windows Admin) but well worth the effort. Regards, Dewayne. I think you should use net ads join -U Administrator%password to join to an AD domain. Felix. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] S3 as domain member with S4
Hello How to set a S3 file server as a domain member with a S4 PDC server ? Regards -- Hervé Hénoch Responsable informatique Institut Sainte Catherine 250 chemin de Baigne-Pieds CS 80005 — 84918 AVIGNON cedex 9 Téléphone : 04.90.27.57.44 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] S3 as domain member with S4
-Original Message- From: samba-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org] On Behalf Of Hervé Hénoch Sent: Monday, 11 February 2013 9:00 PM To: samba-liste Subject: [Samba] S3 as domain member with S4 Hello How to set a S3 file server as a domain member with a S4 PDC server ? Regards -- Hervé Hénoch Responsable informatique Institut Sainte Catherine 250 chemin de Baigne-Pieds CS 80005 84918 AVIGNON cedex 9 Téléphone : 04.90.27.57.44 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba Treat it in a manner similar to a Windows AD DC. I'm doing the same because the Samba3 smbd is less than 1/10 the memory footprint than samba4 smbd, you will need to include --with-ads when you build your samba3 fileserver, and change smb.conf to use security = ADS I think its also important to keep in mind the different language. Samba4 provides a much more sophisticated feature-full Active Directory Domain Controller (AD DC), whilst Samba3 provided a Primary Domain Controller (PDC). Ref: http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/domain-member.html#ads-member Regards, Dewayne. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] S3 as domain member with S4
On Mon, 2013-02-11 at 11:00 +0100, Hervé Hénoch wrote: Hello How to set a S3 file server as a domain member with a S4 PDC server ? You can join Samba 3.x or Samba 4.0 as a domain member of a Samba 4.0 AD DC in the same way you would join any other AD domain. eg 'net ads join. See https://www.samba.org/samba/docs/man/Samba-Guide/unixclients.html#adssdm -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] S3 as domain member with S4
Thanks I've followed the document and i can see in the AD the server included. But I've the following error : net join -Uadministrateur Using short domain name -- SC Joined 'SSC011' to realm 'sc.isc84.org' *DNS Update for ssc011.sc.isc84.org failed: ERROR_DNS_INVALID_MESSAGE DNS update failed!* Moreover I can't access from a window box to my server with \\ssc011 (the name of my server). Regards Le 11/02/2013 11:53, Dewayne Geraghty a écrit : -Original Message- From: samba-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org] On Behalf Of Hervé Hénoch Sent: Monday, 11 February 2013 9:00 PM To: samba-liste Subject: [Samba] S3 as domain member with S4 Hello How to set a S3 file server as a domain member with a S4 PDC server ? Regards -- Hervé Hénoch Responsable informatique Institut Sainte Catherine 250 chemin de Baigne-Pieds CS 80005 --- 84918 AVIGNON cedex 9 Téléphone : 04.90.27.57.44 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba Treat it in a manner similar to a Windows AD DC. I'm doing the same because the Samba3 smbd is less than 1/10 the memory footprint than samba4 smbd, you will need to include --with-ads when you build your samba3 fileserver, and change smb.conf to use security = ADS I think its also important to keep in mind the different language. Samba4 provides a much more sophisticated feature-full Active Directory Domain Controller (AD DC), whilst Samba3 provided a Primary Domain Controller (PDC). Ref: http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/domain-member.html#ads-member Regards, Dewayne. -- Hervé Hénoch Responsable informatique Institut Sainte Catherine 250 chemin de Baigne-Pieds CS 80005 --- 84918 AVIGNON cedex 9 Téléphone : 04.90.27.57.44 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] S3 as domain member with S4
Thanks I've followed the document and i can see in the AD the server included. But I've the following error when doing the following command : net join -Uadministrateur Using short domain name -- SC Joined 'SSC011' to realm 'sc.isc84.org' *DNS Update for ssc011.sc.isc84.org failed: ERROR_DNS_INVALID_MESSAGE DNS update failed!* Moreover I can't access from a window box to my server with \\ssc011 (the name of my server). My /ets/hosts 127.0.0.1 ssc011.sc.isc84.org ssc011 localhost 192.168.77.4ssc011.sc.isc84.org ssc011 192.168.77.1vspdc.sc.isc84.org vspdc sc is the samba3 domain 192.168.77.1 - is the samba4 PDC 192.168.77.4 - is the samba 3.6 file server which has the name ssc011 Regards Le 11/02/2013 12:02, Andrew Bartlett a écrit : On Mon, 2013-02-11 at 11:00 +0100, Hervé Hénoch wrote: Hello How to set a S3 file server as a domain member with a S4 PDC server ? You can join Samba 3.x or Samba 4.0 as a domain member of a Samba 4.0 AD DC in the same way you would join any other AD domain. eg 'net ads join. See https://www.samba.org/samba/docs/man/Samba-Guide/unixclients.html#adssdm -- Hervé Hénoch Responsable informatique Institut Sainte Catherine 250 chemin de Baigne-Pieds CS 80005 — 84918 AVIGNON cedex 9 Téléphone : 04.90.27.57.44 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] S3 as domain member with S4
-Original Message- From: samba-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org] On Behalf Of Hervé Hénoch Sent: Tuesday, 12 February 2013 1:31 AM To: Andrew Bartlett; samba-liste Subject: Re: [Samba] S3 as domain member with S4 Thanks I've followed the document and i can see in the AD the server included. But I've the following error when doing the following command : net join -Uadministrateur Using short domain name -- SC Joined 'SSC011' to realm 'sc.isc84.org' *DNS Update for ssc011.sc.isc84.org failed: ERROR_DNS_INVALID_MESSAGE DNS update failed!* Moreover I can't access from a window box to my server with \\ssc011 (the name of my server). My /ets/hosts 127.0.0.1 ssc011.sc.isc84.org ssc011 localhost 192.168.77.4ssc011.sc.isc84.org ssc011 192.168.77.1vspdc.sc.isc84.org vspdc sc is the samba3 domain 192.168.77.1 - is the samba4 PDC 192.168.77.4 - is the samba 3.6 file server which has the name ssc011 Regards Le 11/02/2013 12:02, Andrew Bartlett a écrit : On Mon, 2013-02-11 at 11:00 +0100, Hervé Hénoch wrote: Hello How to set a S3 file server as a domain member with a S4 PDC server ? You can join Samba 3.x or Samba 4.0 as a domain member of a Samba 4.0 AD DC in the same way you would join any other AD domain. eg 'net ads join. See https://www.samba.org/samba/docs/man/Samba-Guide/unixclients.html#adss dm -- Hervé Hénoch Responsable informatique Institut Sainte Catherine 250 chemin de Baigne-Pieds CS 80005 84918 AVIGNON cedex 9 Téléphone : 04.90.27.57.44 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba Herve, Samba4 provides a lot of features though it does have some prerequisites; please review the HowTo, and particularly https://wiki.samba.org/index.php/Samba4/HOWTO#Step_7:_Configure_DNS noting the first line A working DNS setup is essential to the correct operation of Samba. It's a hard road (if you're not familiar with being a Windows Admin) but well worth the effort. Regards, Dewayne. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
