Univention Bugzilla – Bug 36749
Samba 4.2rc2 DC Slave join fails in IPv6 only domain
Last modified: 2023-03-25 06:51:13 CET
In the IPv6 PT a DC Slave join failed. This is the debug output: ============================================================================= root@ucs-2418:~# samba-tool domain join --debuglevel=10 organisation.intranet DC --kerberos=no -UAdministrator%univention --realm=ORGANISATION.INTRANET --machinepass=jAYekafCPvFA3xzef2dj INFO: Current debug levels: all: 10 tdb: 10 printdrivers: 10 lanman: 10 smb: 10 rpc_parse: 10 rpc_srv: 10 rpc_cli: 10 passdb: 10 sam: 10 auth: 10 winbind: 10 vfs: 10 idmap: 10 quota: 10 acls: 10 locking: 10 msdfs: 10 dmapi: 10 registry: 10 scavenger: 10 dns: 10 ldb: 10 lpcfg_load: refreshing parameters from /etc/samba/smb.conf Processing section "[global]" Processing section "[netlogon]" Processing section "[sysvol]" Processing section "[IPC$]" WARNING: No path in service IPC$ - making it unavailable! NOTE: Service IPC$ is flagged unavailable. Processing section "[homes]" Processing section "[printers]" Processing section "[print$]" pm_process() returned Yes GENSEC backend 'gssapi_spnego' registered GENSEC backend 'gssapi_krb5' registered GENSEC backend 'gssapi_krb5_sasl' registered GENSEC backend 'spnego' registered GENSEC backend 'schannel' registered GENSEC backend 'naclrpc_as_system' registered GENSEC backend 'sasl-EXTERNAL' registered GENSEC backend 'ntlmssp' registered GENSEC backend 'http_basic' registered GENSEC backend 'http_ntlm' registered GENSEC backend 'krb5' registered GENSEC backend 'fake_gssapi_krb5' registered added interface eth0 ip=2001:4dd0:ff00:8c42:ff12::4 bcast= netmask=ffff:ffff:ffff:ffff:: added interface eth0 ip=2001:4dd0:ff00:8c42:ff12::4 bcast= netmask=ffff:ffff:ffff:ffff:: added interface eth0 ip=2001:4dd0:ff00:8c42:ff12::4 bcast= netmask=ffff:ffff:ffff:ffff:: added interface eth0 ip=2001:4dd0:ff00:8c42:ff12::4 bcast= netmask=ffff:ffff:ffff:ffff:: Finding a writeable DC for domain 'organisation.intranet' added interface eth0 ip=2001:4dd0:ff00:8c42:ff12::4 bcast= netmask=ffff:ffff:ffff:ffff:: added interface eth0 ip=2001:4dd0:ff00:8c42:ff12::4 bcast= netmask=ffff:ffff:ffff:ffff:: finddcs: searching for a DC by DNS domain organisation.intranet finddcs: looking for SRV records for _ldap._tcp.organisation.intranet resolve_lmhosts: Attempting lmhosts lookup for name _ldap._tcp.organisation.intranet<0x0> startlmhosts: Can't open lmhosts file /etc/samba/lmhosts. Error was No such file or directory ads_dns_lookup_srv: 1 records returned in the answer section. ads_dns_parse_rr_srv: Parsed ucs-5963.organisation.intranet [0, 100, 389] dns child failed to find name '_ldap._tcp.organisation.intranet' of type SRV finddcs: Failed to find SRV record for _ldap._tcp.organisation.intranet ERROR(exception): uncaught exception - Failed to find a writeable DC for domain 'organisation.intranet' File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line 175, in _run return self.run(*args, **kwargs) File "/usr/lib/python2.7/dist-packages/samba/netcmd/domain.py", line 620, in run keep_existing=keep_existing) File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1168, in join_DC machinepass, use_ntvfs, dns_backend, promote_existing, keep_existing) File "/usr/lib/python2.7/dist-packages/samba/join.py", line 80, in __init__ ctx.server = ctx.find_dc(domain) File "/usr/lib/python2.7/dist-packages/samba/join.py", line 274, in find_dc raise Exception("Failed to find a writeable DC for domain '%s'" % domain) ============================================================================= But the SRV record is resolvable: =================================================================== root@ucs-2418:~# host -t srv '_ldap._tcp.organisation.intranet' _ldap._tcp.organisation.intranet has SRV record 0 100 389 ucs-5963.organisation.intranet. =================================================================== Reading the messages carefully this part is pretty weird: =================================================================== ads_dns_lookup_srv: 1 records returned in the answer section. ads_dns_parse_rr_srv: Parsed ucs-5963.organisation.intranet [0, 100, 389] dns child failed to find name '_ldap._tcp.organisation.intranet' of type SRV =================================================================== This looks like a resurrection of Bug 29526.
> This looks like a resurrection of Bug 29526. But that patch has been accepted upstream long time ago. Playing with "name resolve order" didn't help, so the next step would be "univention-install gdb samba-dbg" and tracing net ads join.
No problem in 4.2 PT