New UCS Server Install,
Trying to join the domain on Kubuntu 24.04 LTS but receive the following error
sudo univention-domain-join-cli --skip-login-manager
Automatically detected the domain '.LAN’.
Please enter the user name of a domain administrator: administrator
Please enter the password for administrator:
Warning: /etc/ldap/ldap.conf already exists.
Warning: /etc/krb5.conf already exists.
Created a backup of all configuration files, that will be modified at ‘/var/univention-backup/20260113174953_domain-join’.
Getting the DN of the Administrator
get admin DN failed with: Warning: Permanently added ‘10.0.12.2’ (ED25519) to the list of known hosts.
ldap_sasl_interactive_bind: Local error (-2)
additional info: SASL(-1): generic failure: GSSAPI Error: Miscellaneous failure (see text) (Not same client principal returned as requested (ldap/ucs-dc1..lan@****.LAN))
An error occurred: get admin DN failed with: Warning: Permanently added ‘10.0.12.2’ (ED25519) to the list of known hosts.
ldap_sasl_interactive_bind: Local error (-2)
additional info: SASL(-1): generic failure: GSSAPI Error: Miscellaneous failure (see text) (Not same client principal returned as requested (ldap/ucs-dc1..lan@.LAN))
. Please check /var/log/univention/domain-join-cli.log for more information.
That Log File:
2026-01-13 12:31:59,415 userinfo INFO Automatically detected the domain ‘****.LAN’.
2026-01-13 12:32:15,367 debugging DEBUG ‘true’ returned 0: Warning: Permanently added ‘10.0.12.2’ (ED25519) to the list of known hosts.
2026-01-13 12:32:16,143 debugging DEBUG ‘/usr/sbin/ucr shell’ returned 0: Warning: Permanently added ‘10.0.12.2’ (ED25519) to the list of known hosts.
2026-01-13 12:32:16,146 userinfo WARNING Warning: /etc/ldap/ldap.conf already exists.
2026-01-13 12:32:16,149 userinfo WARNING Warning: /etc/krb5.conf already exists.
2026-01-13 12:32:16,149 userinfo INFO Created a backup of all configuration files, that will be modified at ‘/var/univention-backup/20260113183216_domain-join’.
2026-01-13 12:32:16,806 debugging DEBUG [‘sh’, ‘-e’, ‘-u’, ‘-c’, ‘cat >“$0”; chmod 600 “$0”; kinit --password-file=“$0”’, ‘/dev/shm/administratordomain-join’] returned 0: Warning: Permanently added ‘10.0.12.2’ (ED25519) to the list of known hosts.
2026-01-13 12:32:16,806 userinfo INFO Getting the DN of the Administrator
2026-01-13 12:32:17,448 userinfo CRITICAL get admin DN failed with: Warning: Permanently added ‘10.0.12.2’ (ED25519) to the list of known hosts.
ldap_sasl_interactive_bind: Local error (-2)
additional info: SASL(-1): generic failure: GSSAPI Error: Miscellaneous failure (see text) (Not same client principal returned as requested (ldap/ucs-dc1..lan@.LAN))
2026-01-13 12:32:18,082 debugging DEBUG [‘rm’, ‘-f’, ‘/dev/shm/administratordomain-join’] returned 0: Warning: Permanently added ‘10.0.12.2’ (ED25519) to the list of known hosts.
2026-01-13 12:32:18,082 userinfo CRITICAL An error occurred: get admin DN failed with: Warning: Permanently added ‘10.0.12.2’ (ED25519) to the list of known hosts.
ldap_sasl_interactive_bind: Local error (-2)
additional info: SASL(-1): generic failure: GSSAPI Error: Miscellaneous failure (see text) (Not same client principal returned as requested (ldap/ucs-dc1..lan@.LAN))
. Please check /var/log/univention/domain-join-cli.log for more information.
2026-01-13 12:32:18,083 debugging CRITICAL get admin DN failed with: Warning: Permanently added ‘10.0.12.2’ (ED25519) to the list of known hosts.
ldap_sasl_interactive_bind: Local error (-2)
additional info: SASL(-1): generic failure: GSSAPI Error: Miscellaneous failure (see text) (Not same client principal returned as requested (ldap/ucs-dc1..lan@.LAN))
Traceback (most recent call last):
File “/usr/sbin/univention-domain-join-cli”, line 165, in
distribution_joiner.join_domain()
File “/usr/lib/python3/dist-packages/univention_domain_join/distributions/ubuntu.py”, line 86, in join_domain
admin_dn = LdapConfigurator().get_admin_dn(self.dc_ip, self.admin_username, self.admin_pw, self.ldap_base)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File “/usr/lib/python3/dist-packages/univention_domain_join/join_steps/ldap_configurator.py”, line 118, in get_admin_dn
raise LdapConfigutationException(‘get admin DN failed with: {}’.format(stderr.decode()))
univention_domain_join.join_steps.ldap_configurator.LdapConfigutationException: get admin DN failed with: Warning: Permanently added ‘10.0.12.2’ (ED25519) to the list of known hosts.
ldap_sasl_interactive_bind: Local error (-2)
additional info: SASL(-1): generic failure: GSSAPI Error: Miscellaneous failure (see text) (Not same client principal returned as requested (ldap/ucs-dc1..lan@.LAN))