文档建议反馈控制台
首页
学习
活动
专区
圈层
工具
MCP广场
文章/答案/技术大牛
发布
社区首页 >问答首页 >Samba4添加附加域控制器

Samba4添加附加域控制器
EN

Stack Overflow用户
提问于 2022-07-02 14:05:58
回答 1查看 149关注 0票数 0

我正试图在Synology上设置的当前域中添加一个额外的域控制器。根据各种文档(包括标准samba文档),我遇到了以下问题:

调用以下命令:

代码语言:javascript
复制
sudo samba-tool domain join home.intern DC --option="dsdb:schema update allowed = yes"

下列产出的结果:

代码语言:javascript
复制
INFO 2022-07-02 15:57:30,583 pid:17493 /usr/lib/python3/dist-packages/samba/join.py #107: Finding a writeable DC for domain 'home.intern'
INFO 2022-07-02 15:57:30,603 pid:17493 /usr/lib/python3/dist-packages/samba/join.py #109: Found DC nas.home.intern
INFO 2022-07-02 15:57:30,836 pid:17493 /usr/lib/python3/dist-packages/samba/join.py #1543: workgroup is HOME
INFO 2022-07-02 15:57:30,836 pid:17493 /usr/lib/python3/dist-packages/samba/join.py #1546: realm is home.intern
Adding CN=DC1,OU=Domain Controllers,DC=home,DC=intern
Adding CN=DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=home,DC=intern
Adding CN=NTDS Settings,CN=DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=home,DC=intern
Adding SPNs to CN=DC1,OU=Domain Controllers,DC=home,DC=intern
Setting account password for DC1$
Enabling account
Calling bare provision
INFO 2022-07-02 15:57:47,388 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2122: Looking up IPv4 addresses
INFO 2022-07-02 15:57:47,391 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2139: Looking up IPv6 addresses
WARNING 2022-07-02 15:57:47,393 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2146: No IPv6 address will be assigned
INFO 2022-07-02 15:57:48,950 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2294: Setting up secrets.ldb
INFO 2022-07-02 15:57:48,979 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2299: Setting up the registry
INFO 2022-07-02 15:57:49,007 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2302: Setting up the privileges database
INFO 2022-07-02 15:57:49,063 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2305: Setting up idmap db
INFO 2022-07-02 15:57:49,100 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2312: Setting up SAM db
INFO 2022-07-02 15:57:49,115 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #897: Setting up sam.ldb partitions and settings
INFO 2022-07-02 15:57:49,118 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #909: Setting up sam.ldb rootDSE
INFO 2022-07-02 15:57:49,126 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #1322: Pre-loading the Samba 4 and AD schema
Unable to determine the DomainSID, can not enforce uniqueness constraint on local domainSIDs

INFO 2022-07-02 15:57:49,291 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2364: A Kerberos configuration suitable for Samba AD has been generated at /var/lib/samba/private/krb5.conf
INFO 2022-07-02 15:57:49,292 pid:17493 /usr/lib/python3/dist-packages/samba/provision/__init__.py #2366: Merge the contents of this file with your system krb5.conf or replace it with this one. Do not create a symlink
Provision OK for domain DN DC=home,DC=intern
Starting replication
Schema-DN[CN=Schema,CN=Configuration,DC=home,DC=intern] objects[402/1573] linked_values[0/0]
Schema-DN[CN=Schema,CN=Configuration,DC=home,DC=intern] objects[804/1573] linked_values[0/0]
Schema-DN[CN=Schema,CN=Configuration,DC=home,DC=intern] objects[1206/1573] linked_values[0/0]
Schema-DN[CN=Schema,CN=Configuration,DC=home,DC=intern] objects[1573/1573] linked_values[0/0]
Analyze and apply schema objects
schema_data_modify: we are not master: reject modify request

Failed to commit objects: WERR_GEN_FAILURE
Join failed - cleaning up
Deleted CN=DC1,OU=Domain Controllers,DC=home,DC=intern
Deleted CN=NTDS Settings,CN=DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=home,DC=intern
Deleted CN=DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=home,DC=intern
ERROR(runtime): uncaught exception - (31, "Failed to process 'chunk' of DRS replicated objects: WERR_GEN_FAILURE")
  File "/usr/lib/python3/dist-packages/samba/netcmd/__init__.py", line 186, in _run
    return self.run(*args, **kwargs)
  File "/usr/lib/python3/dist-packages/samba/netcmd/domain.py", line 661, in run
    join_DC(logger=logger, server=server, creds=creds, lp=lp, domain=domain,
  File "/usr/lib/python3/dist-packages/samba/join.py", line 1559, in join_DC
    ctx.do_join()
  File "/usr/lib/python3/dist-packages/samba/join.py", line 1449, in do_join
    ctx.join_replicate()
  File "/usr/lib/python3/dist-packages/samba/join.py", line 980, in join_replicate
    repl.replicate(ctx.schema_dn, source_dsa_invocation_id,
  File "/usr/lib/python3/dist-packages/samba/drs_utils.py", line 356, in replicate
    raise e
  File "/usr/lib/python3/dist-packages/samba/drs_utils.py", line 343, in replicate
    self.process_chunk(level, ctr, schema, req_level, req, first_chunk)
  File "/usr/lib/python3/dist-packages/samba/drs_utils.py", line 236, in process_chunk
    self.net.replicate_chunk(self.replication_state, level, ctr,

有人知道这个错误发生的原因以及它的含义吗?

谢谢!

dns
controller
samba
EN

回答 1

Stack Overflow用户

发布于 2022-07-02 16:44:15

问题是主域控制器上的一些墓碑。供应过程试图删除那些由于它不是架构主程序而无法实现的配置。在处理主dc上的“无效”条目之后,配置运行良好。如果其他人在配置过程中遇到问题,添加"-d 3“参数总是个好主意,这会提高调试级别并提供更多(重要的)输出。

再见

票数 0
EN
页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:

https://stackoverflow.com/questions/72839649

复制
相关文章

相似问题

领券

腾讯云开发者

扫码关注腾讯云开发者

扫码关注腾讯云开发者

领取腾讯云代金券

热门产品

热门推荐

更多推荐

Copyright © 2013 - 2025 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有 

深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 深公网安备号 44030502008569

腾讯云计算(北京)有限责任公司 京ICP证150476号 |  京ICP备11018762号 | 京公网安备号11010802020287

问题归档专栏文章快讯文章归档关键词归档开发者手册归档开发者手册 Section 归档