Page 1 of 1

Can't join domain

Posted: Fri Nov 03, 2017 11:32 pm
by dlaurenz
i have a problem with the newest firmware.... since yesterday domain access does not work, so i tried to rejoin, but this also fails. i joined a fresh install debian sucessfully to the domain to make sure the dc are not the problem and have 2 other qnaps which work perfectly in the samba 4 ad domain....one of them has QTS 4.2 the other one the newest firmware

here's the log:

my setup

3x Samba 4.7 DC controllers
3x QNAP, 2 of them run perfectly

Firmware of the one which is unable to join QTS 4.3.3.0361.

German-text:

Microsoft-Netzwerkeinstellungen fehlgeschlagen. Bitte prüfen Sie den DNS-Server, den Domänennamen, den Benutzernamen und das Kennwort für das Anmelden bei der Domäne.

======== DEBUG START =======

/usr/local/samba/bin/net time set -S SAMBA01.dns.domain

[command] echo ******** | /usr/bin/kinit "user@dns.domain"

Password for user@dns.domain:

Specify WORKGROUP = WORKGROUP

[command] /usr/local/samba/bin/net ads join -S SAMBA01 -U "user%********" -s /etc/config/smb.conf

Could not initialise message context. Try running as root

Failed to join domain: Access is denied



I can ping all three dcs from the qnap box

Re: Can't join domain

Posted: Sat Nov 04, 2017 5:03 am
by OneCD
Hi and welcome to the forum.

Please don't post the same problem in multiple topics. I've removed your duplicate post. ;)

Re: Can't join domain

Posted: Sat Nov 04, 2017 7:26 am
by dlaurenz
sorry - i thought as repley it might not be seen....

Re: Can't join domain

Posted: Sat Nov 04, 2017 7:34 am
by dlaurenz
this is strange - i tried a readonly dc - and it worked to join - a more complex variant, but ok...
any explanation?

Re: Can't join domain

Posted: Sat Nov 04, 2017 5:56 pm
by dlaurenz
readonly dc means,, i configured the qnap as readonly dc