No AD authentication after demoting FreeNAS Domain Controller

swarm32

swarm32

Cadet
Joined
Jan 2, 2019
Messages
2
I've been running FreeNAS 11.2-U8 system as a domain controller for quite a while and due to some other issues decided to take the plunge to migrate the domain elsewhere this weekend. I followed the directions in the 11.3 release blog to migrate the domain over to a pair of Debian based samba 4 domain controllers instead and things went smoothly, all FSMO roles, users and policies transferred over. My windows 7 RSAT VM does everything just fine when connected to the new DCs as well. However, things went sideways once I demoted the FreeNAS box from being a domain controller, I can no longer see any AD user information from the FreeNAS box and my SMB shares are no longer authenticating.
  • wbinfo -t reports the RPC calls succeeded
  • wbinfo -u comes back empty
  • wbingo -g comes back empty
  • using the host command returns the expected results
  • manually requesting a Kerberos ticket works
Any suggestions as to where I should look next?
 
You must log in or register to reply here.

Similar threads

M
  • Locked
AD: pam_ldap (Strong(er) authentication required)
Replies
4
Views
3K
dlavigne
D
M
  • Locked
Problem freenas 8.3.0 P1 with AD 2008R2
Replies
0
Views
2K
marcosasjr
M
J
  • Locked
AD integration - No domain users or groups in the GUI
Replies
6
Views
3K
jabbs
J
C
  • Locked
FreeNAS AD not accepting groups
Replies
12
Views
5K
Chris Hoefler
C
D
  • Locked
Refresh connection with Active Directory upon restart
Replies
9
Views
4K
Dotty
D
Top