Univention Bugzilla – Bug 47955
create user with udm in univention-samba4/scripts/create_spn_account.sh
Last modified: 2019-03-12 13:40:48 CET
In ucs@school "samba-tool add" is disabled by the univention-ldb-modules. To avoid workarounds it would be better to create the user with udm and wait for replication before setting the SPN and creating the keytab.
*** Bug 30115 has been marked as a duplicate of this bug. ***
school/joinhooks 89fbb9b08d2f99ed66a167d622c4ee3296bfbd4c
We should think about adjusting our ldb module to support creating user accounts in UCS@school Samba/AD too. Not beeing able to do that is pretty inconvenient on a DC Master.
(In reply to Arvid Requate from comment #3) > We should think about adjusting our ldb module to support creating user > accounts in UCS@school Samba/AD too. Not beeing able to do that is pretty > inconvenient on a DC Master. yes, but not on this bug
for 4.4 only, we do not need this in 4.3 commit merged to 4.4 5bf632254723dd1e72214440dd48c92e1a4a9abc - changelog 138a4ecb6176944c37a8b1269df7314eb2d67ea5 - univention-samba4 Package: univention-samba4 Version: 8.0.0-3A~4.4.0.201901071743 Branch: ucs_4.4-0
*** Bug 48497 has been marked as a duplicate of this bug. ***
Due to Bug #48529 i had to re-order the 98univention-samba4-dns.inst join script. First, configure dns/backend to samba4, then create SPN account. 107bdbc245dbc193f0c96e2c7f66412b9b7016d5 univention-samba
e2e552243766eec9c613fadfa8931dcdfbd9da6f univention-samba4 added credentials for create_spn_account
TODO fix test/ucs-test/tests/51_samba4/53create_spn_account TODO fix services/univention-ldb-modules/96univention-samba4slavepdc.inst
(In reply to Felix Botner from comment #9) > TODO fix test/ucs-test/tests/51_samba4/53create_spn_account fixed > TODO fix services/univention-ldb-modules/96univention-samba4slavepdc.inst this has been moved to ucsschool, so i modified ucs-school-metapackage/96ucs-school-samba-slavepdc.inst (413f5f0ea02c34c02df8e0d2c4d49afd6ee4aa0d), but i am not sure why this join script also wants to create the dns-$(hostname) SPN, we already do this in the samba-dns join script, so maybe this can be removed?
Created attachment 9846 [details] errormessage.patch Ok it works, this is just a minor fix for two error messages (binddn/bindpwdfile)
(In reply to Arvid Requate from comment #11) > Created attachment 9846 [details] > errormessage.patch > > Ok it works, this is just a minor fix for two error messages > (binddn/bindpwdfile) a8f8f54326a77ac423c5001946fb3d7a93a26e55 - univention-samba4 Successful build Package: univention-samba4 Version: 8.0.0-13A~4.4.0.201902201004 Branch: ucs_4.4-0 Scope:
Ok, works and bonus points for adding the Bug to changelog-4.4-0.xml.
UCS 4.4 has been released: https://docs.software-univention.de/release-notes-4.4-0-en.html https://docs.software-univention.de/release-notes-4.4-0-de.html If this error occurs again, please use "Clone This Bug".