Sada je: 04 kol 2021, 16:09.
Linux, poslužitelj, mreže i sigurnost

Moderator/ica: Moderatori/ce

Pozdrav,

zelim iskonfigurirati AD DC na home mrezi, te u njega dodati nekoliko racunala (fedora strojeve preko winbind-a). Nemam vanjsku staticku IP adresu. Prvo je pitanje da li je to uopce moguce?

Danas pokusavam slozit, no problem dolazi nakon instaliranja AD DC-a (Windows Server 2008 R2 x86). Nakon sto sam pokusao dodati jedno racunalo u domenu (uredno kreirao racun u AD-u) javlja mi da se ne moze joinat u domenu (koju sam nazvao nas.local) radi toga jer nemam lokalni DNS server koji je potreban za potpunu funkcionalnost AD DC-a.

Error log prilikom dodavanja racunala u domenu

Note: This information is intended for a network administrator. If you are not your network's administrator, notify the administrator that you received this information, which has been recorded in the file C:\Windows\debug\dcdiag.txt.

The following error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain "nas.local":

The error was: "DNS name does not exist."
(error code 0x0000232B RCODE_NAME_ERROR)

The query was for the SRV record for _ldap._tcp.dc._msdcs.nas.local

Common causes of this error include the following:

- The DNS SRV records required to locate a AD DC for the domain are not registered in DNS. These records are registered with a DNS server automatically when a AD DC is added to a domain. They are updated by the AD DC at set intervals. This computer is configured to use DNS servers with the following IP addresses:

213.191.128.8 - adresa od ISP public DNS servera
10.1.1.5 - to mi je adresa od samog AD DC servera

- One or more of the following zones do not include delegation to its child zone:

nas.local
local
. (the root zone)



No na serveru preko Roles-a mi ne da ni instalirati DNS server, error koji dobivam je sljedeci:

DNS Server error log

Domain Name Server

The DNS server role is being installed on a domain controller, and so DNS zones will be integrated with Active Directory Domain Services.

DNS Server: Installation failed

<Error>: Attempt to install DNS Server failed with error code 0x80070643. Fatal error during installation



Screenshoot routera (na njemu sam iskljucio DNS server, za primarni postavio AD DC server i public ISP DNS server)

slika

Screenshoot postavki mrezne kartice na AD DC serveru

slika


Guglao sam i najsliciniji problem sto sam nasao je

http://forums.windrivers.com/showthread ... post169582

no ja ne mogu dodati forwarder zonu jer se DNS rola nece ni instalirati.

Pitanje je, da li je uopce moguce imati AD DC na kucnoj mrezi gdje nema staticne vanjske IP adrese i/ili domene, ako je - gdje grijesim, te je li DNS server/rola uopce potrebna. Samo da jos napomenem, prilikom instaliranja AD DC role, odabrao sam da mi je function level Windows Server 2008 (da li mozda treba nize, 2000 ili 2003 radi kompatibilnosti?).

Unaprijed zahvaljujem na svakoj vrsti sugestije i pomoci.
Avatar
Postovi: 84
Postovi: 84
Pridružen/a: 03 stu 2012, 23:02
Podijelio/la zahvalu: 1 puta
Primio/la zahvalu: 0 puta
Spol: M
OS: CentOS 6.3
Zasto ne bi bilo moguce (linux se lako integrira u AD).

Glede errora, procitaj sljedeci clanak:
http://support.microsoft.com/kb/975654
When you're a kid and you wanna go "Weee !", but you ain't got drugs yet ... You hold out for your life, hold on to your little GONADS ... and STRIFE.
Avatar
Postovi: 910
Postovi: 910
Pridružen/a: 12 svi 2010, 07:57
Podijelio/la zahvalu: 0 puta
Primio/la zahvalu: 13 puta
OS: linux
Zahvaljujem na brzom odgovoru koji je rijesio problem instalacije DNS role.

Automatski se podesila forwardes zona, ali se klijent i dalje nece joinat, javlja istu gresku kao iz prethodnog posta.

slika

Koliko sam citao, i naveo link u prvom postu, treba samo postaviti public isp dns u forwardes zonu da bi ukoliko nije lokalni dns server dostupan sve islo preko njega. Ili je potrebno jos nesto?

EDIT: Rijeseno, postavio sam iskljucivo IP servera u dns interface, po defaultu su bile obtainane sve ip adrese. drade, veliko hvala na pomoci.
Avatar
Postovi: 84
Postovi: 84
Pridružen/a: 03 stu 2012, 23:02
Podijelio/la zahvalu: 1 puta
Primio/la zahvalu: 0 puta
Spol: M
OS: CentOS 6.3
Nema na cemu. Uzivaj.
When you're a kid and you wanna go "Weee !", but you ain't got drugs yet ... You hold out for your life, hold on to your little GONADS ... and STRIFE.
Avatar
Postovi: 910
Postovi: 910
Pridružen/a: 12 svi 2010, 07:57
Podijelio/la zahvalu: 0 puta
Primio/la zahvalu: 13 puta
OS: linux

Na mreži
Trenutno korisnika/ca: / i 1 gost.