Problem: UCS Domain Join Failing

Knowledge Base Community
, , , ,
#1

Problem

The join of an additional UCS server fails with
NT_STATUS_CANT_ACCESS_DOMAIN_INFO

Environment

You will notice entries in the logfiles like the following:

Could not find machine account in secrets database: Failed to fetch machine account password for RDCL from both secrets.ldb (Could not find entry to match filter: '(&(flatname=RDCL)  (objectclass=primaryDomain))' base: 'cn=Primary Domains': No such object: dsdb_search at ../source4/dsdb/common/util.c:4636) and from /var/lib/samba/private/secrets.tdb: NT_STATUS_CANT_ACCESS_DOMAIN_INFO
ERROR(<type 'exceptions.UnboundLocalError'>): uncaught exception - local variable 'res' referenced before assignment
  File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line 176, in _run
    return self.run(*args, **kwargs)
  File "/usr/lib/python2.7/dist-packages/samba/netcmd/domain.py", line 668, in run
    keep_existing=keep_existing)
  File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1481, in join_DC
    ctx.do_join()
  File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1391, in do_join
    ctx.join_add_dns_records()
  File "/usr/lib/python2.7/dist-packages/samba/join.py", line 1077, in join_add_dns_records
    for rec in res.rec:

Resolving the master’s DNS entries through dig and ping where fine.
Some zone entries in DNS configuration are missing.

Solution

Run Script migrate_legacy_dns_zones.

Verify everything is fine by using /usr/share/univention-samba4/scripts/check_essential_samba4_dns_records.sh

Mastodon