Hier ist die Ausgabe von
ucr search --brief ^ldap
ldap/acl/nestedgroups: yes
ldap/acl/read/anonymous: no
ldap/acl/read/ips:
ldap/acl/slavepdc: yes
ldap/acl/user/password/change: no
ldap/autostart: yes
ldap/backup:
ldap/base: dc=isff,dc=see
ldap/binaryattributes:
ldap/cachesize: 20000
ldap/client/network_timeout:
ldap/client/retry/count: 10
ldap/client/timelimit:
ldap/client/timeout:
ldap/database/bdb/checkpoint:
ldap/database/bdb/db_config_options: set_flags
ldap/database/bdb/set_cachesize:
ldap/database/bdb/set_flags: DB_LOG_AUTOREMOVE
ldap/database/bdb/set_lg_bsize:
ldap/database/bdb/set_lg_max:
ldap/database/ldbm/dbsync:
ldap/database/mdb/checkpoint:
ldap/database/mdb/envflags:
ldap/database/mdb/maxsize: 2147483648
ldap/database/type: mdb
ldap/debug/level: 0
ldap/hostdn: cn=memberoude,cn=memberserver,cn=computers,dc=isff,dc=see
ldap/idlcachesize: 20000
ldap/idletimeout: 360
ldap/index/approx: cn,givenName,mail,sn,uid
ldap/index/autorebuild: yes
ldap/index/eq: aRecord,automountInformation,cNAMERecord,cn,description,dhcpHWAddress,displayName,entryUUID,gidNumber,givenName,homeDirectory,krb5PrincipalName,macAddress,mail,mailAlternativeAddress,mailPrimaryAddress,memberUid,objectClass,ou,pTRRecord,relativeDomainName,sambaAcctFlags,sambaDomainName,sambaGroupType,sambaPrimaryGroupSID,sambaSID,sambaSIDList,secretary,shadowExpire,sn,uid,uidNumber,uniqueMember,univentionCanonicalRecipientRewriteEnabled,univentionInventoryNumber,univentionLicenseModule,univentionLicenseObject,univentionMailHomeServer,univentionNagiosHostname,univentionObjectFlag,univentionObjectType,univentionPolicyReference,univentionServerRole,univentionService,univentionShareGid,univentionShareSambaName,univentionShareWriteable,univentionUDMOptionModule,univentionUDMPropertyCLIName,univentionUDMPropertyDefault,univentionUDMPropertyDeleteObjectClass,univentionUDMPropertyDoNotSearch,univentionUDMPropertyHook,univentionUDMPropertyLayoutOverwritePosition,univentionUDMPropertyLayoutOverwriteTab,univentionUDMPropertyLayoutPosition,univentionUDMPropertyLayoutTabAdvanced,univentionUDMPropertyLayoutTabName,univentionUDMPropertyLdapMapping,univentionUDMPropertyLongDescription,univentionUDMPropertyModule,univentionUDMPropertyMultivalue,univentionUDMPropertyObjectClass,univentionUDMPropertyOptions,univentionUDMPropertyShortDescription,univentionUDMPropertySyntax,univentionUDMPropertyTranslationLongDescription,univentionUDMPropertyTranslationShortDescription,univentionUDMPropertyTranslationTabName,univentionUDMPropertyValueMayChange,univentionUDMPropertyValueRequired,univentionUDMPropertyVersion,zoneName
ldap/index/pres: aRecord,automountInformation,cn,description,dhcpHWAddress,displayName,gidNumber,givenName,homeDirectory,krb5PrincipalName,macAddress,mail,mailAlternativeAddress,mailPrimaryAddress,memberUid,name,objectClass,ou,relativeDomainName,shadowMax,sn,uid,uidNumber,uniqueMember,univentionMailHomeServer,univentionObjectFlag,univentionPolicyReference,univentionUDMPropertyCLIName,univentionUDMPropertyDefault,univentionUDMPropertyDeleteObjectClass,univentionUDMPropertyDoNotSearch,univentionUDMPropertyHook,univentionUDMPropertyLayoutOverwritePosition,univentionUDMPropertyLayoutOverwriteTab,univentionUDMPropertyLayoutPosition,univentionUDMPropertyLayoutTabAdvanced,univentionUDMPropertyLayoutTabName,univentionUDMPropertyLdapMapping,univentionUDMPropertyLongDescription,univentionUDMPropertyModule,univentionUDMPropertyMultivalue,univentionUDMPropertyObjectClass,univentionUDMPropertyOptions,univentionUDMPropertyShortDescription,univentionUDMPropertySyntax,univentionUDMPropertyTranslationLongDescription,univentionUDMPropertyTranslationShortDescription,univentionUDMPropertyTranslationTabName,univentionUDMPropertyValueMayChange,univentionUDMPropertyValueRequired,univentionUDMPropertyVersion,zoneName
ldap/index/quickmode: false
ldap/index/sub: aRecord,associatedDomain,automountInformation,cn,default,description,displayName,employeeNumber,givenName,macAddress,mail,mailAlternativeAddress,mailPrimaryAddress,name,ou,pTRRecord,printerModel,relativeDomainName,sambaSID,sn,uid,univentionInventoryNumber,univentionOperatingSystem,univentionSyntaxDescription,univentionUDMPropertyLongDescription,univentionUDMPropertyShortDescription,zoneName
ldap/limits: users time.soft=-1 time.hard=-1
ldap/master/port: 7389
ldap/master: master.isff.see
ldap/maxopenfiles: 8192
ldap/online/master:
ldap/overlay/memberof/dangling: ignore
ldap/overlay/memberof/member: uniqueMember
ldap/overlay/memberof/memberof: memberOf
ldap/overlay/memberof/modifiersname: cn=admin,dc=isff,dc=see
ldap/overlay/memberof/objectclass:
ldap/overlay/memberof/refint: false
ldap/overlay/memberof: true
ldap/policy/cron: 5 * * * *
ldap/ppolicy/default:
ldap/ppolicy/enabled:
ldap/ppolicy:
ldap/replication/preferredpassword:
ldap/sasl/secprops/maxssf:
ldap/server/addition: memberoude.isff.see
ldap/server/ip: 127.0.0.1
ldap/server/name: master.isff.see
ldap/server/port: 7389
ldap/server/type:
ldap/sizelimit: 400000
ldap/threads: 16
ldap/tls/ciphersuite:
ldap/tls/dh/cron:
ldap/tls/dh/paramfile: /etc/ldap/dh_2048.pem
ldap/tls/dh/restart:
ldap/tls/minprotocol:
ldap/tool-threads: 1
ldap/translogfile:
Der Port 1024 für Samba 4 scheint offen zu sein
nc -v -z master.isff.see 1024
Connection to master.isff.see 1024 port [tcp/*] succeeded!
Und bei
net rpc join -v -U Morimystes memberoude
kam:
Failed to join domain: failed to find DC for domain ISFF - Undetermined error
Den Eintrag
ldap/server/addition: memberoude.isff.see
habe ich manuell eingegeben, davor war dort leer.
Der Memberserver ist von der Seite des Masters über Ping per IP und Hostname erreichbar.
Ich merke gerade, es sind mehrere Antworten hier in diesem Thema verschwunden…
Auf dem Memberserver wurden alle Join-Skripte erfolgreich ausgeführt, außer 2:
und
Hat noch jemand eine Idee?
Beste Grüße
Morimystes