Univention Bugzilla – Bug 43785
AD Takeover fails if AD NETBIOS domain name is unusual
Last modified: 2020-01-14 09:34:11 CET
+++ This bug was initially created as a clone of Bug #39070 +++ Same situation as in Bug #37460: AD Takeover fails if AD NETBIOS domain name is unusual: UCS DC set up with NETBIOS domain: FOOBAR DNS domainname: FooBar.com AD DC set up with NETBIOS domain: FOOBAR0 DNS domainname: FooBar.com In AD Takeover we have the additional challenge that AD Takeover method post_join_tasks_and_start_samba_without_drsuapi looks for the samba domain object in LDAP, so the workaround of Bug #37460, to manually set windows/domain to "FOOBAR0" doesn't work here. +++ This bug was initially created as a clone of Bug #37460 +++
I actually had this in a customer environment with UCS 4.1-4 errata406. The Netbios-Domain differed from the AD-Domain (first part). After changing - ucr set windows/domain="OTHER" - udm settings/sambadomain modify --dn "sambaDomainName=WRONG,cn=samba,dc=domain,dc=tld" --set "name=OTHER" everything works fine...
I think we can ask the AD-DC for his netbios domain, e.g. this seems to work also with foreign domains: samba-tool domain info <IP of AD-DC>
This issue has been filled against UCS 4.1. The maintenance with bug and security fixes for UCS 4.1 has ended on 5st of April 2018. Customers still on UCS 4.1 are encouraged to update to UCS 4.3. Please contact your partner or Univention for any questions. If this issue still occurs in newer UCS versions, please use "Clone this bug" or simply reopen the issue. In this case please provide detailed information on how this issue is affecting you.