Author Topic: Server ldap/my donain@LOCL is not registered with our KDC  (Read 198 times)

mamdouh.nor@gmail.com

  • Zen Apprentice
  • *
  • Posts: 1
  • Karma: +0/-0
    • View Profile
Server ldap/my donain@LOCL is not registered with our KDC
« on: October 09, 2022, 01:59:38 pm »
dear community
greeting

i am new in using  zentyal & Ubuntu also , start learning  because i am start new work 2 months ago , and found new work with out DC , my background is windows server not Ubuntu , after searching and test from my background i know server must server replications but found this error .
can any one help me how to solve it

Server ldap/sgegy.locl@LOCL is not registered with our KDC:  Miscellaneous fail ure (see text): Server (krbtgt/LOCL@SGEGY.LOCL) unknown
gensec_spnego_create_negTokenInit_step: gssapi_krb5: creating NEG_TOKEN_INIT fo r ldap/sgegy.locl failed (next[ntlmssp]): NT_STATUS_INVALID_PARAMETER
Got challenge flags:
Got NTLMSSP neg_flags=0x62898235
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x62088235
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x62088235
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x62088235
GENSEC backend 'gssapi_spnego' registered
GENSEC backend 'gssapi_krb5' registered
GENSEC backend 'gssapi_krb5_sasl' registered
GENSEC backend 'spnego' registered
GENSEC backend 'schannel' registered
GENSEC backend 'naclrpc_as_system' registered
GENSEC backend 'sasl-EXTERNAL' registered
GENSEC backend 'ntlmssp' registered
GENSEC backend 'ntlmssp_resume_ccache' registered
GENSEC backend 'http_basic' registered
GENSEC backend 'http_ntlm' registered
GENSEC backend 'http_negotiate' registered
GENSEC backend 'krb5' registered
GENSEC backend 'fake_gssapi_krb5' registered
resolve_lmhosts: Attempting lmhosts lookup for name dc002.sgegy.locl<0x20>

BR;

turalyon

  • Zen Warrior
  • ***
  • Posts: 139
  • Karma: +13/-0
    • View Profile
Re: Server ldap/my donain@LOCL is not registered with our KDC
« Reply #1 on: October 10, 2022, 11:50:23 am »
Hi,

We need more information:

* How many domain controllers do you have? And what OS and version they are running?
* What errors are you getting?
* Did you analyze the log files?
  * /var/log/zentyal/zentyal.log
  * /var/log/syslog

Also, a general recommendation in case one of them is Zentyal 6.1+ is to generate a system status by running the following script:

Code: [Select]
sudo /usr/share/zentyal/smart-admin-report

NOTE: The script may contain sensitive information.

--

“This world is ours, and by the Holy Light we will keep it safe, now and forever".