Jake Davis
asked on
Joining Zentyal Community Server to Windows Server 2008 domain.
I am trying to install a Zentyal Community Edition server to act as an RODC for my network. It's basically a backup DNS Server/DC in case one of our virtual hosts goes down. Every time I try to join the Zentyal server as an additional DC using the web console, I get a samba error. When I attempt to join using the console, for troubleshooting purposes, I notice that the process hangs up at an AD entry for exchange OWA. Does anyone have any advice on how to work around this issue?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Samba can be AD controller or AD client. Since all other setups make you pay Microsoft CAL, I see no purpose having other software in that position.
ASKER
Well, I want to use the Samba DC as a backup domain controller. Here is my issue. I enter this command to join the domain as a dc:
sudo samba-tool domain join tf-technology.local DC -Uadministrator --workgroup=tfti --server=172.16.100.20 --dns-backend=BIND9_DLZ --realm=TF-TECHNOLOGY.LOCA
I run into an issue here, and the domain join fails:
Failed to apply records: attribute 'msExchOWAAllowedFileTypes
Now, I've gone to this entry using the LDP tool on the domain controller, I've removed tons of entries and backed them up so that I can reapply them once I get Samba synced up with the domain. What I'm looking for is any insight into why it doesn't like the entries and how to make it work around them. Can I provision the same domain using the Samba tool, and then use the Active directory tool to marry them together, or should I just keep removing entries?
sudo samba-tool domain join tf-technology.local DC -Uadministrator --workgroup=tfti --server=172.16.100.20 --dns-backend=BIND9_DLZ --realm=TF-TECHNOLOGY.LOCA
I run into an issue here, and the domain join fails:
Failed to apply records: attribute 'msExchOWAAllowedFileTypes
Now, I've gone to this entry using the LDP tool on the domain controller, I've removed tons of entries and backed them up so that I can reapply them once I get Samba synced up with the domain. What I'm looking for is any insight into why it doesn't like the entries and how to make it work around them. Can I provision the same domain using the Samba tool, and then use the Active directory tool to marry them together, or should I just keep removing entries?
Grandfather of zentyal keeps documentation about editing smb.conf to join domain without creepy tools:
https://wiki.debian.org/AuthenticatingLinuxWithActiveDirectory
https://wiki.debian.org/AuthenticatingLinuxWithActiveDirectory
ASKER
Any advice at all on having it function as a DC? I've got most of the functionality out of it that I want, I would just like my users to be able to authenticate if the Virtual DC goes down and I don't want a physical windows DC.
Read your question until you find DC being asked there.
ASKER
I've requested that this question be deleted for the following reason:
No one responded with an appropriate solution to my question.
No one responded with an appropriate solution to my question.
Sorry - you asked for RDC - you get answer NO
Then you flipped and flapped the DC requirement getting instructions on all possible other setups.
Please accept http:#a40564859 as complete answer
Then you flipped and flapped the DC requirement getting instructions on all possible other setups.
Please accept http:#a40564859 as complete answer
ASKER
Okay, I will accept that answer.
ASKER