Author Topic: [SOLVED] Connect Zentyal 4.2 to Windows 2012 domain - problems with KDC  (Read 2032 times)

BrunovonTroba

  • Zen Monk
  • **
  • Posts: 60
  • Karma: +2/-0
    • View Profile
I need urgent help
I'm trying to connect Zentyal 4.2 to existing 2012 domain (server 2012r2 with domain on 2012 level)
After first problems (netbios name was first part of FQDN - changed that with powershell) the only problem is kerberos authentication -
Error output: kinit: krb5_get_init_creds: unable to reach any KDC in realm PSSE.PL
I can ping psse.pl
I can telnet psse.pl port 88
help me please - what is wrong? Is there anthing i have to check on Windows DC/DNS?
« Last Edit: December 01, 2015, 11:16:55 pm by BrunovonTroba »

BrunovonTroba

  • Zen Monk
  • **
  • Posts: 60
  • Karma: +2/-0
    • View Profile
Re: Connect Zentyal 4.2 to Windows 2012 domain - problems with KDC
« Reply #1 on: December 01, 2015, 10:30:24 pm »
first part of connection - found reasons of connections problems: during AD DS installation i have also installed DNS server, so AD during configuration did not wanted to configure properly DNS entries. Installation AD DS and domain promotion from clean and not installing DNS resulted in automatic DNS installation and configuration, so KERBEROS and LDAP works fine.

But have other problem:
ERROR(runtime): uncaught exception - DsAddEntry failed
I found it was a problem in samba 4.1 with connection to 2012 and 2012r2 in march-april this year. But Zentyal team says it works now with 2012 (not r2). So i have made 2012 functionality on 2012r2 server and still not works...

So... I have to degrade AD controler to level 2008R2
And everything went smooth
Waiting for 2012 and more - 2012R2 support.
« Last Edit: December 01, 2015, 11:18:20 pm by BrunovonTroba »