dstewart51
Dabbler
- Joined
- Apr 2, 2019
- Messages
- 12
Hello, after a few hours of troubleshooting I thought it best to ask for some help.
Trying to bind FreeNAS-11.2-U3 to Active Directory, it appears to join, but will not bind. I'm not able to see any of the AD users or groups in either the security settings or under the system users and groups. This was the same with 11.2-U2. Ill try to provide some of the debug info I have seen requested from similar threads.
When trying to Enable AD, I continually see this error;
[MiddlewareError: Active Directory start timed out after 90 seconds.]
However, it appears everything is joining properly;
wbinfo -t
checking the trust secret for domain ETMCORAD via RPC calls succeeded
wbinfo --ping-dc
checking the NETLOGON for domain[ETMCORAD] dc connection to "LAWILSHIRE-DC1.etmcorad.com" succeeded
wbinfo -i "etmcorad\dstewartxxx"
ETMCORAD\dstewartxxx:*:131419:20513::/home/ETMCORAD/dstewartxxx:/bin/sh
/etc/directoryservice/ActiveDirectory/ctl start
False
True
Join is OK
False
True
This is from the ad_verifier.py script found here: https://raw.githubusercontent.com/anodos325/samba_scripts/adverify_devel/not_samba/ad_verifier.py;
python ad_verifier.py
10.21.68.5 is not a name server for AD domain etmcorad.com
10.21.60.133 is not a name server for AD domain etmcorad.com
10.21.0.133 is not a name server for AD domain etmcorad.com
Then running `net -k -d 3 ads join` shows this at the end;
Using short domain name -- ETMCORAD
Joined 'CAWBCFMMFS' to dns domain 'etmcorad.com'
added interface ix0 ip=192.168.0.2 bcast=192.168.0.3 netmask=255.255.255.252
added interface igb0 ip=10.21.68.20 bcast=10.21.71.255 netmask=255.255.252.0
retrying DNS update with next nameserver after receiving ERROR_DNS_CONNECTION_FAILED
DoDNSUpdate: signed update failed
DNS Update for cawbcfmmfs.etmcorad.com failed: ERROR_DNS_UPDATE_FAILED
DNS update failed: NT_STATUS_UNSUCCESSFUL
return code = 0
So it appears there could be a DNS issue of some kind. Some pointers, hints, advice would be much appreciated, I'm not an AD guy.
Trying to bind FreeNAS-11.2-U3 to Active Directory, it appears to join, but will not bind. I'm not able to see any of the AD users or groups in either the security settings or under the system users and groups. This was the same with 11.2-U2. Ill try to provide some of the debug info I have seen requested from similar threads.
When trying to Enable AD, I continually see this error;
[MiddlewareError: Active Directory start timed out after 90 seconds.]
However, it appears everything is joining properly;
wbinfo -t
checking the trust secret for domain ETMCORAD via RPC calls succeeded
wbinfo --ping-dc
checking the NETLOGON for domain[ETMCORAD] dc connection to "LAWILSHIRE-DC1.etmcorad.com" succeeded
wbinfo -i "etmcorad\dstewartxxx"
ETMCORAD\dstewartxxx:*:131419:20513::/home/ETMCORAD/dstewartxxx:/bin/sh
/etc/directoryservice/ActiveDirectory/ctl start
False
True
Join is OK
False
True
This is from the ad_verifier.py script found here: https://raw.githubusercontent.com/anodos325/samba_scripts/adverify_devel/not_samba/ad_verifier.py;
python ad_verifier.py
10.21.68.5 is not a name server for AD domain etmcorad.com
10.21.60.133 is not a name server for AD domain etmcorad.com
10.21.0.133 is not a name server for AD domain etmcorad.com
Then running `net -k -d 3 ads join` shows this at the end;
Using short domain name -- ETMCORAD
Joined 'CAWBCFMMFS' to dns domain 'etmcorad.com'
added interface ix0 ip=192.168.0.2 bcast=192.168.0.3 netmask=255.255.255.252
added interface igb0 ip=10.21.68.20 bcast=10.21.71.255 netmask=255.255.252.0
retrying DNS update with next nameserver after receiving ERROR_DNS_CONNECTION_FAILED
DoDNSUpdate: signed update failed
DNS Update for cawbcfmmfs.etmcorad.com failed: ERROR_DNS_UPDATE_FAILED
DNS update failed: NT_STATUS_UNSUCCESSFUL
return code = 0
So it appears there could be a DNS issue of some kind. Some pointers, hints, advice would be much appreciated, I'm not an AD guy.