After successfully completing a test installation, I was unable to successfully migrate from Virtual-Box to ESXi/vSphere.
So yesterday I re-installed all of them on the ESXi/vSphere.
First the AD master, then two AD backups, which will later offer Kopano and SMB shares.
Installation and JOIN went smoothly. Then I installed the AD-compatible domain controller on all three machines. First on the master, then the backups. That too ran without problems.
root@mannheim:~# univention-check-join-status
Joined successfully
(on both AD backups)
But if I want to set up a file share, it doesn’t work. The directories are created, but the rights are not set correctly.
An “univention-join” results in the following output on both AD backups:
root@mannheim:~# univention-join
univention-join: joins a computer to an ucs domain
copyright (c) 2001-2018 Univention GmbH, Germany
Enter DC Master Account : root
Enter DC Master Password:
Search DC Master: done
Check DC Master: done
Stop S4-Connector: done
Stop LDAP Server: done
Stop Samba Server: done
Search ldap/base done
Start LDAP Server: done
Search LDAP binddn Insufficient access (50)
**************************************************************************
* Join failed! *
* Contact your system administrator *
**************************************************************************
* Message: binddn for user root not found.
**************************************************************************