samba_upgradedns --dns-backend=SAMBA_INTERNAL
Reading domain information
Traceback (most recent call last):
File "/usr/sbin/samba_upgradedns", line 262, in <module>
paths, lp.configfile, lp)
File "/usr/lib/python2.7/dist-packages/samba/provision/__init__.py", line 334, in find_provision_key_parameters
dns_admins_sid = get_dnsadmins_sid(samdb, names.domaindn)
File "/usr/lib/python2.7/dist-packages/samba/provision/sambadns.py", line 69, in get_dnsadmins_sid
attrs=["objectSid"])
_ldb.LdbError: (32, 'No such Base DN: CN=DnsAdmins,CN=Groups,DC=beka,DC=lan')
samba_upgradedns --dns-backend=BIND9_DLZ
Reading domain information
Traceback (most recent call last):
File "/usr/sbin/samba_upgradedns", line 262, in <module>
paths, lp.configfile, lp)
File "/usr/lib/python2.7/dist-packages/samba/provision/__init__.py", line 334, in find_provision_key_parameters
dns_admins_sid = get_dnsadmins_sid(samdb, names.domaindn)
File "/usr/lib/python2.7/dist-packages/samba/provision/sambadns.py", line 69, in get_dnsadmins_sid
attrs=["objectSid"])
_ldb.LdbError: (32, 'No such Base DN: CN=DnsAdmins,CN=Groups,DC=beka,DC=lan')
samba_dnsupdate --verbose --all-names
Exclude the following interfaces: docker0
Exclude the following IP addresses: ['172.17.42.1']
IPs: ['192.168.99.1']
force update: A ucs-1.beka.lan 192.168.99.1
force update: A beka.lan 192.168.99.1
force update: SRV _ldap._tcp.beka.lan ucs-1.beka.lan 389
force update: SRV _ldap._tcp.dc._msdcs.beka.lan ucs-1.beka.lan 389
force update: SRV _ldap._tcp.812d008b-ed08-40ef-9a55-fe88948578a7.domains._msdcs.beka.lan ucs-1.beka.lan 389
force update: SRV _kerberos._tcp.beka.lan ucs-1.beka.lan 88
force update: SRV _kerberos._udp.beka.lan ucs-1.beka.lan 88
force update: SRV _kerberos._tcp.dc._msdcs.beka.lan ucs-1.beka.lan 88
force update: SRV _kpasswd._tcp.beka.lan ucs-1.beka.lan 464
force update: SRV _kpasswd._udp.beka.lan ucs-1.beka.lan 464
force update: CNAME 85915b8c-d791-4c1a-a12d-11740f894a0e._msdcs.beka.lan ucs-1.beka.lan
force update: SRV _ldap._tcp.Default-First-Site-Name._sites.beka.lan ucs-1.beka.lan 389
force update: SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.beka.lan ucs-1.beka.lan 389
force update: SRV _kerberos._tcp.Default-First-Site-Name._sites.beka.lan ucs-1.beka.lan 88
force update: SRV _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.beka.lan ucs-1.beka.lan 88
force update: SRV _ldap._tcp.pdc._msdcs.beka.lan ucs-1.beka.lan 389
force update: A gc._msdcs.beka.lan 192.168.99.1
force update: SRV _gc._tcp.beka.lan ucs-1.beka.lan 3268
force update: SRV _ldap._tcp.gc._msdcs.beka.lan ucs-1.beka.lan 3268
force update: SRV _gc._tcp.Default-First-Site-Name._sites.beka.lan ucs-1.beka.lan 3268
force update: SRV _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.beka.lan ucs-1.beka.lan 3268
force update: A DomainDnsZones.beka.lan 192.168.99.1
force update: SRV _ldap._tcp.DomainDnsZones.beka.lan ucs-1.beka.lan 389
force update: SRV _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.beka.lan ucs-1.beka.lan 389
force update: A ForestDnsZones.beka.lan 192.168.99.1
force update: SRV _ldap._tcp.ForestDnsZones.beka.lan ucs-1.beka.lan 389
force update: SRV _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.beka.lan ucs-1.beka.lan 389
27 DNS updates and 0 DNS deletes needed
Successfully obtained Kerberos ticket to DNS/ucs-1.beka.lan as UCS-1$
update(nsupdate): A ucs-1.beka.lan 192.168.99.1
Calling nsupdate for A ucs-1.beka.lan 192.168.99.1 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
ucs-1.beka.lan. 900 IN A 192.168.99.1
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): A beka.lan 192.168.99.1
Calling nsupdate for A beka.lan 192.168.99.1 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
beka.lan. 900 IN A 192.168.99.1
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.beka.lan ucs-1.beka.lan 389
Calling nsupdate for SRV _ldap._tcp.beka.lan ucs-1.beka.lan 389 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.beka.lan. 900 IN SRV 0 100 389 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.dc._msdcs.beka.lan ucs-1.beka.lan 389
Calling nsupdate for SRV _ldap._tcp.dc._msdcs.beka.lan ucs-1.beka.lan 389 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.dc._msdcs.beka.lan. 900 IN SRV 0 100 389 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.812d008b-ed08-40ef-9a55-fe88948578a7.domains._msdcs.beka.lan ucs-1.beka.lan 389
Calling nsupdate for SRV _ldap._tcp.812d008b-ed08-40ef-9a55-fe88948578a7.domains._msdcs.beka.lan ucs-1.beka.lan 389 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.812d008b-ed08-40ef-9a55-fe88948578a7.domains._msdcs.beka.lan. 900 IN SRV 0 100 389 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _kerberos._tcp.beka.lan ucs-1.beka.lan 88
Calling nsupdate for SRV _kerberos._tcp.beka.lan ucs-1.beka.lan 88 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.beka.lan. 900 IN SRV 0 100 88 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _kerberos._udp.beka.lan ucs-1.beka.lan 88
Calling nsupdate for SRV _kerberos._udp.beka.lan ucs-1.beka.lan 88 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._udp.beka.lan. 900 IN SRV 0 100 88 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _kerberos._tcp.dc._msdcs.beka.lan ucs-1.beka.lan 88
Calling nsupdate for SRV _kerberos._tcp.dc._msdcs.beka.lan ucs-1.beka.lan 88 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.dc._msdcs.beka.lan. 900 IN SRV 0 100 88 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _kpasswd._tcp.beka.lan ucs-1.beka.lan 464
Calling nsupdate for SRV _kpasswd._tcp.beka.lan ucs-1.beka.lan 464 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kpasswd._tcp.beka.lan. 900 IN SRV 0 100 464 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _kpasswd._udp.beka.lan ucs-1.beka.lan 464
Calling nsupdate for SRV _kpasswd._udp.beka.lan ucs-1.beka.lan 464 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kpasswd._udp.beka.lan. 900 IN SRV 0 100 464 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): CNAME 85915b8c-d791-4c1a-a12d-11740f894a0e._msdcs.beka.lan ucs-1.beka.lan
Calling nsupdate for CNAME 85915b8c-d791-4c1a-a12d-11740f894a0e._msdcs.beka.lan ucs-1.beka.lan (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
85915b8c-d791-4c1a-a12d-11740f894a0e._msdcs.beka.lan. 900 IN CNAME ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.Default-First-Site-Name._sites.beka.lan ucs-1.beka.lan 389
Calling nsupdate for SRV _ldap._tcp.Default-First-Site-Name._sites.beka.lan ucs-1.beka.lan 389 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.Default-First-Site-Name._sites.beka.lan. 900 IN SRV 0 100 389 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.beka.lan ucs-1.beka.lan 389
Calling nsupdate for SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.beka.lan ucs-1.beka.lan 389 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.beka.lan. 900 IN SRV 0 100 389 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _kerberos._tcp.Default-First-Site-Name._sites.beka.lan ucs-1.beka.lan 88
Calling nsupdate for SRV _kerberos._tcp.Default-First-Site-Name._sites.beka.lan ucs-1.beka.lan 88 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.Default-First-Site-Name._sites.beka.lan. 900 IN SRV 0 100 88 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.beka.lan ucs-1.beka.lan 88
Calling nsupdate for SRV _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.beka.lan ucs-1.beka.lan 88 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.beka.lan. 900 IN SRV 0 100 88 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.pdc._msdcs.beka.lan ucs-1.beka.lan 389
Calling nsupdate for SRV _ldap._tcp.pdc._msdcs.beka.lan ucs-1.beka.lan 389 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.pdc._msdcs.beka.lan. 900 IN SRV 0 100 389 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): A gc._msdcs.beka.lan 192.168.99.1
Calling nsupdate for A gc._msdcs.beka.lan 192.168.99.1 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
gc._msdcs.beka.lan. 900 IN A 192.168.99.1
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _gc._tcp.beka.lan ucs-1.beka.lan 3268
Calling nsupdate for SRV _gc._tcp.beka.lan ucs-1.beka.lan 3268 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_gc._tcp.beka.lan. 900 IN SRV 0 100 3268 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.gc._msdcs.beka.lan ucs-1.beka.lan 3268
Calling nsupdate for SRV _ldap._tcp.gc._msdcs.beka.lan ucs-1.beka.lan 3268 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.gc._msdcs.beka.lan. 900 IN SRV 0 100 3268 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _gc._tcp.Default-First-Site-Name._sites.beka.lan ucs-1.beka.lan 3268
Calling nsupdate for SRV _gc._tcp.Default-First-Site-Name._sites.beka.lan ucs-1.beka.lan 3268 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_gc._tcp.Default-First-Site-Name._sites.beka.lan. 900 IN SRV 0 100 3268 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.beka.lan ucs-1.beka.lan 3268
Calling nsupdate for SRV _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.beka.lan ucs-1.beka.lan 3268 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.beka.lan. 900 IN SRV 0 100 3268 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): A DomainDnsZones.beka.lan 192.168.99.1
Calling nsupdate for A DomainDnsZones.beka.lan 192.168.99.1 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
DomainDnsZones.beka.lan. 900 IN A 192.168.99.1
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.DomainDnsZones.beka.lan ucs-1.beka.lan 389
Calling nsupdate for SRV _ldap._tcp.DomainDnsZones.beka.lan ucs-1.beka.lan 389 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.DomainDnsZones.beka.lan. 900 IN SRV 0 100 389 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.beka.lan ucs-1.beka.lan 389
Calling nsupdate for SRV _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.beka.lan ucs-1.beka.lan 389 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.beka.lan. 900 IN SRV 0 100 389 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): A ForestDnsZones.beka.lan 192.168.99.1
Calling nsupdate for A ForestDnsZones.beka.lan 192.168.99.1 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
ForestDnsZones.beka.lan. 900 IN A 192.168.99.1
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.ForestDnsZones.beka.lan ucs-1.beka.lan 389
Calling nsupdate for SRV _ldap._tcp.ForestDnsZones.beka.lan ucs-1.beka.lan 389 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.ForestDnsZones.beka.lan. 900 IN SRV 0 100 389 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
update(nsupdate): SRV _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.beka.lan ucs-1.beka.lan 389
Calling nsupdate for SRV _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.beka.lan ucs-1.beka.lan 389 (add)
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.beka.lan. 900 IN SRV 0 100 389 ucs-1.beka.lan.
response to GSS-TSIG query was unsuccessful
Failed nsupdate: 1
Failed update of 27 entries
Systemdiagnose liefert dann auch immer noch den gleichen Fehler.
Ich habe auch noch die Warnung :
Denke aber nicht, dass es da einen Zusammenhang gibt.
Ich werde jetzt mal neue Clients joinen und schauen was passiert.
Danke