Hi Team,
I'm building a new Freenas system on a SuperMicro 12 bay SAS2 HBA setup. After finally getting past some issues with memory it is now installed, seeing all disks and ready to start configuration. However, I have encountered a problem with Active Directory.
When I attempt to join the domain, the UI shows as "joined" by presenting me with a leave domain button but when you navigate out and back in, it disappears. A Kerberos realm appears for the domain i've "joined" it to as well as in the /etc/krb5.conf I get the following (domain obfuscated):
However, when I do a wbinfo -t I get:
When I check the logs in /var/log/samba4/log.winbindd I get the following messages:
I thought this very odd, so I tried restarting/manipulating the service or trying to read the configuration file(s) from /etc/directoryservice/, I got a not found error so I went to the directory annndddd...there's nothing there?
Zip, zada, zilch.
As far as I can tell, it was a pretty nominal install of 11.2 and upgraded to 11.3, our directory appears healthy from all the checks I've done and there's nothing Fruitcake-e I can tell about it.
Wonder if anyone has seen this before?
(my Google/search fu did not bring up any relatable threads to my issue)
Many thanks in advance.
I'm building a new Freenas system on a SuperMicro 12 bay SAS2 HBA setup. After finally getting past some issues with memory it is now installed, seeing all disks and ready to start configuration. However, I have encountered a problem with Active Directory.
When I attempt to join the domain, the UI shows as "joined" by presenting me with a leave domain button but when you navigate out and back in, it disappears. A Kerberos realm appears for the domain i've "joined" it to as well as in the /etc/krb5.conf I get the following (domain obfuscated):
Code:
# # krb5.conf(5) - configuration file for Kerberos 5 # $FreeBSD$ # [appdefaults] pam = { forwardable = true ticket_lifetime = 86400 renew_lifetime = 86400 } [libdefaults] dns_lookup_realm = true dns_lookup_kdc = true ticket_lifetime = 24h clockskew = 300 forwardable = true default_realm = DOMAIN.LOCAL [domain_realm] domain.local = DOMAIN.LOCAL .domain.local = DOMAIN.LOCAL DOMAIN.LOCAL = DOMAIN.LOCAL .DOMAIN.LOCAL = DOMAIN.LOCAL [realms] DOMAIN.LOCAL = { default_domain = DOMAIN.LOCAL } [logging] default = SYSLOG:INFO:LOCAL7
However, when I do a wbinfo -t I get:
Code:
root@freenas[/etc/directoryservice]# wbinfo -t could not obtain winbind interface details: WBC_ERR_WINBIND_NOT_AVAILABLE could not obtain winbind domain name! checking the trust secret for domain (null) via RPC calls failed failed to call wbcCheckTrustCredentials: WBC_ERR_WINBIND_NOT_AVAILABLE Could not check secret
When I check the logs in /var/log/samba4/log.winbindd I get the following messages:
Code:
winbindd version 4.10.12 started. Copyright Andrew Tridgell and the Samba Team 1992-2019 [2020/02/09 22:51:27.970959, 0] ../../source3/winbindd/winbindd_cache.c:3166(initialize_winbindd_cache) initialize_winbindd_cache: clearing cache and re-creating with version number 2 [2020/02/09 22:51:27.971978, 0] ../../source3/winbindd/winbindd_util.c:1257(init_domain_list) Could not fetch our SID - did we join? [2020/02/09 22:51:27.972007, 0] ../../source3/winbindd/winbindd.c:1462(winbindd_register_handlers)
I thought this very odd, so I tried restarting/manipulating the service or trying to read the configuration file(s) from /etc/directoryservice/, I got a not found error so I went to the directory annndddd...there's nothing there?
Zip, zada, zilch.
As far as I can tell, it was a pretty nominal install of 11.2 and upgraded to 11.3, our directory appears healthy from all the checks I've done and there's nothing Fruitcake-e I can tell about it.
Wonder if anyone has seen this before?
(my Google/search fu did not bring up any relatable threads to my issue)
Many thanks in advance.