Zentyal Forum, Linux Small Business Server

Zentyal Server => Directory and Authentication => Topic started by: sector-9 on November 22, 2015, 07:45:46 pm

Title: 1st time user - got an error joining to an existing domain
Post by: sector-9 on November 22, 2015, 07:45:46 pm
Hi, first post and first ever installation of Zentyal as I'm from a Windows background: it was all going so well until I tried setting up as an additional domain controller, but it doesn't seem to like my domain admin password which contains a lot of special characters.  Is there a way around this or is it a bug due to be fixed?  I don't really want to change the DomAd password if I can help it.
Title: Re: 1st time user - got an error joining to an existing domain
Post by: sector-9 on November 22, 2015, 10:18:30 pm
I've managed to put in the DomAd password without it complaining by doing through the web interface after it had finished installation, however it fails to save/start the Samba service and leaves it in an unknown state. On the Windows DC I can see that the Zentyal server has been added as a domain controller so clearly something is working, but everytime I click on the "users" button in the web interface it tells me I have to start the domain controller module
Title: Re: 1st time user - got an error joining to an existing domain
Post by: sector-9 on November 23, 2015, 10:10:23 pm
Ok, from the log it's looking like an error loading DNS zones. The forest and domain are both at 2003 functional level and MS-DNS servers is set to only allow secure dynamic updates. Do I need to add my Zentyal server to the "name servers" tab for forward and reverse lookup zones?
Title: Re: 1st time user - got an error joining to an existing domain
Post by: jbahillo on November 23, 2015, 10:24:59 pm
Hello:

I would suggest checking on both zentyal.log and samba.log in order for some further specific information regarding your issue. Make sure as well that Zentyal is able to resolve your DC address both in direct and inverse DNS queries (you may need to add the DC IP as DNS server on Network - DNS.
Title: SOLVED: 1st time user - got an error joining to an existing domain
Post by: sector-9 on November 26, 2015, 10:41:49 pm
I think this is now fixed (at least I can see all AD users and groups from within Zentyal). Turned out that I needed to set the DNS zones in Windows to be replicatable to all DNS zones within the forest and not just the domain.  I'm still not convinced DNS is working fully though as none of the records in the Windows DNS server zones show up in Zentyal DNS.
Title: Re: 1st time user - got an error joining to an existing domain
Post by: jbahillo on November 27, 2015, 10:18:58 am
Hello:

That's normal, as those entries are not on any bind file, but on a samba database, and entries on samba database are not shown in GUI
Title: Re: 1st time user - got an error joining to an existing domain
Post by: sector-9 on November 29, 2015, 11:51:46 pm
Ok, that's good news thanks.  My next job is to try joining Windows servers to the Zentyal server to make sure that works, and then figure out file/printer sharing and the mail server function.