Samba Domain Member and DNS Problems
by robcampbell from LinuxQuestions.org on (#5RH2P)
I am trying to use my Fedora 34 workstation as a domain member but I'm having problems. First problem is that when I join the domain, I get an dns error.
Code:[root@fsdm01~$] net ads join -U Administrator
Enter Administrator's password:
Using short domain name -- HOME
Joined 'FSDM01' to dns domain 'home.test-server.lan'
DNS Update for fsdm01.home.test-server.lan failed: ERROR_DNS_UPDATE_FAILED
DNS update failed: NT_STATUS_UNSUCCESSFULI have created similar domain members in Debian and both of them work just fine. The DC is also Debian.
DC01 (10.0.0.19) = Debian Domain Controller
DM01 (10.0.0.14) = Debian Domain Member
DM02 (10.0.0.16) = Debian Domain Member
FSDM01 (10.0.0.17) = Fedora Domain Member
realm = home.test-server.lan
I can ping hostname from and between all Debian hosts. I can ping all Debian hostnames from Fedora. I cannot ping Fedora hostname from any of the Debian hosts.
Code:[root@DC01~$] dig dc01.$(hostname -d) dm01.$(hostname -d) dm02.$(hostname -d) fsdm01.$(hostname -d)
; <<>> DiG 9.16.15-Debian <<>> dc01.home.test-server.lan dm01.home.test-server.lan dm02.home.test-server.lan fsdm01.home.test-server.lan
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23266
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;dc01.home.test-server.lan. IN A
;; ANSWER SECTION:
dc01.home.test-server.lan. 900 IN A 10.0.0.19
;; AUTHORITY SECTION:
home.test-server.lan. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 197 900 600 86400 3600
;; Query time: 0 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:10:48 EDT 2021
;; MSG SIZE rcvd: 111
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8261
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;dm01.home.test-server.lan. IN A
;; ANSWER SECTION:
dm01.home.test-server.lan. 3600 IN A 10.0.0.14
;; AUTHORITY SECTION:
home.test-server.lan. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 197 900 600 86400 3600
;; Query time: 3 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:10:48 EDT 2021
;; MSG SIZE rcvd: 111
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 7554
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;dm02.home.test-server.lan. IN A
;; ANSWER SECTION:
dm02.home.test-server.lan. 3600 IN A 10.0.0.16
;; AUTHORITY SECTION:
home.test-server.lan. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 197 900 600 86400 3600
;; Query time: 0 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:10:48 EDT 2021
;; MSG SIZE rcvd: 111
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31684
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;fsdm01.home.test-server.lan. IN A
;; AUTHORITY SECTION:
home.test-server.lan. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 197 900 600 86400 3600
;; Query time: 3 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:10:48 EDT 2021
;; MSG SIZE rcvd: 97Code:[Wed Nov 03 13:11:55] [root@DC01~$] dig -x 10.0.0.14
; <<>> DiG 9.16.15-Debian <<>> -x 10.0.0.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28538
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.0.0.10.in-addr.arpa. IN PTR
;; ANSWER SECTION:
14.0.0.10.in-addr.arpa. 900 IN PTR dm01.home.test-server.lan.
;; AUTHORITY SECTION:
0.0.10.in-addr.arpa. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 8 900 600 86400 3600
;; Query time: 0 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:12:12 EDT 2021
;; MSG SIZE rcvd: 131Code:[Wed Nov 03 13:12:12] [root@DC01~$] dig -x 10.0.0.16
; <<>> DiG 9.16.15-Debian <<>> -x 10.0.0.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 50364
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;16.0.0.10.in-addr.arpa. IN PTR
;; ANSWER SECTION:
16.0.0.10.in-addr.arpa. 900 IN PTR dm02.home.test-server.lan.
;; AUTHORITY SECTION:
0.0.10.in-addr.arpa. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 8 900 600 86400 3600
;; Query time: 3 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:12:38 EDT 2021
;; MSG SIZE rcvd: 131Code:[Wed Nov 03 13:12:38] [root@DC01~$] dig -x 10.0.0.17
; <<>> DiG 9.16.15-Debian <<>> -x 10.0.0.17
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57509
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;17.0.0.10.in-addr.arpa. IN PTR
;; ANSWER SECTION:
17.0.0.10.in-addr.arpa. 900 IN PTR fsdm01.home.test-server.lan.
;; AUTHORITY SECTION:
0.0.10.in-addr.arpa. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 8 900 600 86400 3600
;; Query time: 0 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:12:42 EDT 2021
;; MSG SIZE rcvd: 133Code:[Wed Nov 03 13:12:42] [root@DC01~$] dig -x 10.0.0.19
; <<>> DiG 9.16.15-Debian <<>> -x 10.0.0.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 41358
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;19.0.0.10.in-addr.arpa. IN PTR
;; ANSWER SECTION:
19.0.0.10.in-addr.arpa. 900 IN PTR dc01.home.test-server.lan.
;; AUTHORITY SECTION:
0.0.10.in-addr.arpa. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 8 900 600 86400 3600
;; Query time: 0 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:12:48 EDT 2021
;; MSG SIZE rcvd: 131
Code:[root@fsdm01~$] net ads join -U Administrator
Enter Administrator's password:
Using short domain name -- HOME
Joined 'FSDM01' to dns domain 'home.test-server.lan'
DNS Update for fsdm01.home.test-server.lan failed: ERROR_DNS_UPDATE_FAILED
DNS update failed: NT_STATUS_UNSUCCESSFULI have created similar domain members in Debian and both of them work just fine. The DC is also Debian.
DC01 (10.0.0.19) = Debian Domain Controller
DM01 (10.0.0.14) = Debian Domain Member
DM02 (10.0.0.16) = Debian Domain Member
FSDM01 (10.0.0.17) = Fedora Domain Member
realm = home.test-server.lan
I can ping hostname from and between all Debian hosts. I can ping all Debian hostnames from Fedora. I cannot ping Fedora hostname from any of the Debian hosts.
Code:[root@DC01~$] dig dc01.$(hostname -d) dm01.$(hostname -d) dm02.$(hostname -d) fsdm01.$(hostname -d)
; <<>> DiG 9.16.15-Debian <<>> dc01.home.test-server.lan dm01.home.test-server.lan dm02.home.test-server.lan fsdm01.home.test-server.lan
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23266
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;dc01.home.test-server.lan. IN A
;; ANSWER SECTION:
dc01.home.test-server.lan. 900 IN A 10.0.0.19
;; AUTHORITY SECTION:
home.test-server.lan. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 197 900 600 86400 3600
;; Query time: 0 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:10:48 EDT 2021
;; MSG SIZE rcvd: 111
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8261
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;dm01.home.test-server.lan. IN A
;; ANSWER SECTION:
dm01.home.test-server.lan. 3600 IN A 10.0.0.14
;; AUTHORITY SECTION:
home.test-server.lan. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 197 900 600 86400 3600
;; Query time: 3 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:10:48 EDT 2021
;; MSG SIZE rcvd: 111
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 7554
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;dm02.home.test-server.lan. IN A
;; ANSWER SECTION:
dm02.home.test-server.lan. 3600 IN A 10.0.0.16
;; AUTHORITY SECTION:
home.test-server.lan. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 197 900 600 86400 3600
;; Query time: 0 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:10:48 EDT 2021
;; MSG SIZE rcvd: 111
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31684
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;fsdm01.home.test-server.lan. IN A
;; AUTHORITY SECTION:
home.test-server.lan. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 197 900 600 86400 3600
;; Query time: 3 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:10:48 EDT 2021
;; MSG SIZE rcvd: 97Code:[Wed Nov 03 13:11:55] [root@DC01~$] dig -x 10.0.0.14
; <<>> DiG 9.16.15-Debian <<>> -x 10.0.0.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28538
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.0.0.10.in-addr.arpa. IN PTR
;; ANSWER SECTION:
14.0.0.10.in-addr.arpa. 900 IN PTR dm01.home.test-server.lan.
;; AUTHORITY SECTION:
0.0.10.in-addr.arpa. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 8 900 600 86400 3600
;; Query time: 0 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:12:12 EDT 2021
;; MSG SIZE rcvd: 131Code:[Wed Nov 03 13:12:12] [root@DC01~$] dig -x 10.0.0.16
; <<>> DiG 9.16.15-Debian <<>> -x 10.0.0.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 50364
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;16.0.0.10.in-addr.arpa. IN PTR
;; ANSWER SECTION:
16.0.0.10.in-addr.arpa. 900 IN PTR dm02.home.test-server.lan.
;; AUTHORITY SECTION:
0.0.10.in-addr.arpa. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 8 900 600 86400 3600
;; Query time: 3 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:12:38 EDT 2021
;; MSG SIZE rcvd: 131Code:[Wed Nov 03 13:12:38] [root@DC01~$] dig -x 10.0.0.17
; <<>> DiG 9.16.15-Debian <<>> -x 10.0.0.17
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57509
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;17.0.0.10.in-addr.arpa. IN PTR
;; ANSWER SECTION:
17.0.0.10.in-addr.arpa. 900 IN PTR fsdm01.home.test-server.lan.
;; AUTHORITY SECTION:
0.0.10.in-addr.arpa. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 8 900 600 86400 3600
;; Query time: 0 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:12:42 EDT 2021
;; MSG SIZE rcvd: 133Code:[Wed Nov 03 13:12:42] [root@DC01~$] dig -x 10.0.0.19
; <<>> DiG 9.16.15-Debian <<>> -x 10.0.0.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 41358
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;19.0.0.10.in-addr.arpa. IN PTR
;; ANSWER SECTION:
19.0.0.10.in-addr.arpa. 900 IN PTR dc01.home.test-server.lan.
;; AUTHORITY SECTION:
0.0.10.in-addr.arpa. 3600 IN SOA DC01.home.test-server.lan. hostmaster.home.test-server.lan. 8 900 600 86400 3600
;; Query time: 0 msec
;; SERVER: 10.0.0.19#53(10.0.0.19)
;; WHEN: Wed Nov 03 13:12:48 EDT 2021
;; MSG SIZE rcvd: 131