Anonymous

Changes

From Pumping Station One

The trust relationship between this workstation and the primary domain failed (view source)

Revision as of 05:00, 2 September 2014

4,629 bytes added ,  05:00, 2 September 2014
m
Robot: Cosmetic changes
Line 67: Line 67:       −
=== other records ===
+
=== gc records ===
 +
 
 +
    samba-tool dns query bob _msdcs.ad.pumpingstationone.org gc ALL
 +
 
 +
Delete A or AAAA record that is not a Domain controller
 +
    samba-tool dns delete bob _msdcs.ad.pumpingstationone.org gc A ${IP4_Address}
 +
    samba-tool dns delete bob _msdcs.ad.pumpingstationone.org gc AAAA ${IP6_Address}
 +
 
 +
I had a lot of stale entries, as ip address have changed before.
 +
 
 +
=== _tcp.gc records ===
 +
 
 +
    samba-tool dns query bob _msdcs.ad.pumpingstationone.org _tcp.gc ALL
 +
 
 +
delete SRV records poining to removed machines
 +
 
 +
    samba-tool dns delete bob _msdcs.ad.pumpingstationone.org _ldap._tcp.gc SRV 'vm.ad.pumpingstationone.org. 3268 0 100'
 +
 
 +
=== _tcp.dc records ===
 +
 
 +
    samba-tool dns query bob _msdcs.ad.pumpingstationone.org _tcp.dc ALL
 +
 
 +
delete the extra records for _ldap and _kerberos
 +
 
 +
    samba-tool dns delete bob _msdcs.ad.pumpingstationone.org _kerberos._tcp.dc SRV 'vm.ad.pumpingstationone.org. 88 0 100'
 +
    samba-tool dns delete bob _msdcs.ad.pumpingstationone.org _ldap._tcp.dc SRV 'vm.ad.pumpingstationone.org. 389 0 100'
 +
 
 +
=== _tcp.pdc records ===
 +
 
 +
    samba-tool dns query bob _msdcs.ad.pumpingstationone.org _tcp.pdc ALL
 +
 
 +
delete the extra _ldap records:
 +
 
 +
    samba-tool dns delete bob _msdcs.ad.pumpingstationone.org _ldap._tcp.pdc SRV 'vm.ad.pumpingstationone.org. 389 0 100'
 +
 
 +
=== _tcp records records ===
 +
 
 +
    samba-tool dns query bob ad.pumpingstationone.org _tcp ALL
 +
 
 +
delete the extra _gc, _kerberos, _kpasswd, and _ldap records
 +
 
 +
    samba-tool dns delete bob ad.pumpingstationone.org _gc._tcp SRV 'vm.ad.pumpingstationone.org. 3268 0 100'
 +
    samba-tool dns delete bob ad.pumpingstationone.org _kerberos._tcp SRV 'vm.ad.pumpingstationone.org. 88 0 100'
 +
    samba-tool dns delete bob ad.pumpingstationone.org _kpasswd._tcp SRV 'vm.ad.pumpingstationone.org. 464 0 100'
 +
    samba-tool dns delete bob ad.pumpingstationone.org _ldap._tcp SRV 'vm.ad.pumpingstationone.org. 389 0 100'
 +
 
 +
=== _udp records ===
 +
 
 +
    samba-tool dns query bob ad.pumpingstationone.org _udp ALL
 +
 
 +
delete the extra _kerberos and _kpasswd records
 +
 
 +
    samba-tool dns delete bob ad.pumpingstationone.org _kerberos._udp SRV 'vm.ad.pumpingstationone.org. 88 0 100'
 +
    samba-tool dns delete bob ad.pumpingstationone.org _kpasswd._udp SRV 'vm.ad.pumpingstationone.org. 464 0 100'
 +
 
 +
 
 +
=== _tcp.Default-First-Site-Name._sites records ===
 +
 
 +
    samba-tool dns query bob ad.pumpingstationone.org _tcp.Default-First-Site-Name._sites ALL
 +
 
 +
delete extra _kerberos, _ldap, and _gc records
 +
 
 +
    samba-tool dns delete bob ad.pumpingstationone.org _kerberos._tcp.Default-First-Site-Name._sites SRV 'vm.ad.pumpingstationone.org. 88 0 100'
 +
    samba-tool dns delete bob ad.pumpingstationone.org _ldap._tcp.Default-First-Site-Name._sites SRV 'vm.ad.pumpingstationone.org. 389 0 100'
 +
    samba-tool dns delete bob ad.pumpingstationone.org _gc._tcp.Default-First-Site-Name._sites SRV 'vm.ad.pumpingstationone.org. 3268 0 100'
 +
 
 +
=== _tcp.b83beba7-1a4b-4801-a2bd-8ee8ea0eb626.domains records ===
 +
 
 +
 
 +
find the domain guid:
 +
 
 +
    samba-tool dns query bob _msdcs.ad.pumpingstationone.org domains ALL
 +
 
 +
In my case it was <code>Name=b83beba7-1a4b-4801-a2bd-8ee8ea0eb626, Records=0, Children=1</code>
 +
 
 +
    samba-tool dns query bob _msdcs.ad.pumpingstationone.org _tcp.b83beba7-1a4b-4801-a2bd-8ee8ea0eb626.domains ALL
 +
 
 +
delete the _ldap record
 +
 
 +
    samba-tool dns delete bob _msdcs.ad.pumpingstationone.org _ldap._tcp.b83beba7-1a4b-4801-a2bd-8ee8ea0eb626.domains SRV 'vm.ad.pumpingstationone.org. 389 0 100'
 +
 
 +
=== _tcp.Default-First-Site-Name._sites.gc ===
 +
 
 +
    samba-tool dns query bob _msdcs.ad.pumpingstationone.org _tcp.Default-First-Site-Name._sites.gc ALL
 +
 
 +
delete extra _ldap records
 +
 
 +
    samba-tool dns delete bob _msdcs.ad.pumpingstationone.org _ldap._tcp.Default-First-Site-Name._sites.gc SRV 'vm.ad.pumpingstationone.org. 3268 0 100'
 +
 
 +
=== _tcp.Default-First-Site-Name._sites.dc ===
 +
 
 +
    samba-tool dns query bob _msdcs.ad.pumpingstationone.org _tcp.Default-First-Site-Name._sites.dc ALL
 +
 
 +
delete extra _kerberos and _ldap records
 +
 
 +
    samba-tool dns delete bob _msdcs.ad.pumpingstationone.org _kerberos._tcp.Default-First-Site-Name._sites.dc SRV 'vm.ad.pumpingstationone.org. 88 0 100'
 +
    samba-tool dns delete bob _msdcs.ad.pumpingstationone.org _ldap._tcp.Default-First-Site-Name._sites.dc SRV 'vm.ad.pumpingstationone.org. 389 0 100'
 +
 
 +
=== More stale entries ===
 +
 
 +
The primary problem has been resolved, but I am going to document stale entries left behind
 +
* CN=NTDS Settings,CN=VM,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=ad,DC=pumpingstationone,DC=org
 +
** Removing this entry removed the box from the replication pool in <code> samba-tool drs showrepl</code>
Wikibot
WikiBots
1,397

edits

Retrieved from "https://ps1.mywikis.wiki/wiki/Special:MobileDiff/18256...19086"
Cookies help us deliver our services. By using our services, you agree to our use of cookies.
More information