FB Twitter YouTube LinkedIn GitHub G+
PDC -> BDC howto manual setup?

Community Forum

Resolved
0 votes
I am looking for a howto on methods to use ClearOS to generate a BDC's for an existing PDC

Any hints or tips?
Tuesday, May 11 2010, 03:16 PM
Share this post:
Responses (15)
  • Accepted Answer

    Kismet
    Kismet
    Offline
    Thursday, September 15 2011, 12:59 PM - #Permalink
    Resolved
    0 votes
    Guys,

    So something strange is happening here - and I need your help. The net rpc getsid command doesn't work on the BDC unless I add the IP address of the PDC.........why is this?

    [root@server3 ~]# net rpc getsid CENTRALTRUCK
    Unable to find a suitable server for domain CENTRALTRUCK


    [root@server3 ~]# net rpc getsid CENTRALTRUCK -I 172.23.6.127
    Storing SID S-1-5-21-2983252645-957758320-1681478634 for Domain CENTRALTRUCK in secrets.tdb
    The reply is currently minimized Show
  • Accepted Answer

    Kismet
    Kismet
    Offline
    Friday, September 09 2011, 03:18 PM - #Permalink
    Resolved
    0 votes
    I need some help guys,

    I have been able to follow the HOW-TO guide to setup the PDC and BDC. The LDAP on the BDC is synched with the master and I can see all the user accounts and machine accounts. However, while proceeding with the rest of the instructions in the manual, I ran into an error which says: "Unable to find a suitable server for domain CENTRALTRUCK"

    Note that the Windows Networking is STOPPED on the second server (BDC).

    Here's a printout of the error:

    [root@server3 ~]# ldapsetup -f
    What is the role of this server (standalone, master, replicate)?: replicate
    What is your domain (e.g. example.com)?: centraltruck.lan
    What is the hostname of the master LDAP server?: 172.23.6.127
    Specify the master LDAP password?: The following settings will be used to set up LDAP

    Role: replicate
    Master: 172.23.6.127
    Domain: centraltruck.lan
    Password: ****************

    Shutting down SMB services: [ OK ]
    Stopping slapd: [ OK ]
    Starting slapd: [ OK ]
    Stopping ldapsync: [ OK ]
    Starting ldapsync: [ OK ]
    [root@server3 ~]# touch /etc/system/initialized/sambalocal
    [root@server3 ~]# service winbind start
    Starting Winbind services: [ OK ]
    [root@server3 ~]# smbpasswd -w securepassword
    Setting stored password for "cn=manager,cn=internal,dc=centraltruck,dc=lan" in secrets.tdb
    [root@server3 ~]# net rpc getsid CENTRALTRUCK
    Unable to find a suitable server for domain CENTRALTRUCK
    [root@server3 ~]# net rpc getsid MYDOMAIN
    Unable to find a suitable server for domain CENTRALTRUCK
    The reply is currently minimized Show
  • Accepted Answer

    weimar
    weimar
    Offline
    Friday, October 29 2010, 04:09 PM - #Permalink
    Resolved
    0 votes
    Greetings, I have worked stopping the LDAP service and LDAPSYNC, I deleted the files in /var/lib/ldap except DB_CONFIG located in the same folder and accesslog

    LDAP service started I changed the permissions, I return to stop and start the LDAP, run ldapsync, finally start the sevice LDAPSYNC

    However I have the same problem with pdbedit-L
    The reply is currently minimized Show
  • Accepted Answer

    Friday, October 29 2010, 11:16 AM - #Permalink
    Resolved
    0 votes
    By blank slate, do you mean a new installation, or just wiping out LDAP? I did do the latter, but not the former.

    Thanks,
    Drew
    The reply is currently minimized Show
  • Accepted Answer

    Friday, October 29 2010, 04:14 AM - #Permalink
    Resolved
    0 votes
    When setting up a BDC it is best to start with a blank slate.

    Setup the LDAP replication first and use the same password that you use for LDAP on the Master server.
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, October 20 2010, 11:48 AM - #Permalink
    Resolved
    0 votes
    Why do I *always* speak too soon?

    All my accounts were correctly replicated in the BDC so I thought that all was well. Today, I noticed that the instructions had changed a little, so I tried this on the BDC:

    pdbedit -L

    and received the response:

    failed to bind to server ldap://127.0.0.1 with dn="cn=manager,cn=internal,dc=whisperingwoods,dc=org" Error: Invalid credentials
    (unknown)
    Connection to LDAP server failed for the 1 try!
    Connection to LDAP server failed for the 2 try!
    Connection to LDAP server failed for the 3 try!


    I assume that this is not correct. Any suggestions? Should I wipe the BDC LDAP and try again with updated instructions?

    Drew Vonada-Smith wrote:
    This went really smoothly for me. No problems at all, even without a script!
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, October 20 2010, 11:11 AM - #Permalink
    Resolved
    0 votes
    This went really smoothly for me. No problems at all, even without a script!
    The reply is currently minimized Show
  • Accepted Answer

    Monday, October 18 2010, 08:17 PM - #Permalink
    Resolved
    0 votes
    I just talked to David about this a few minutes ago. He's going to finish up some lose ends in the following document (there was an update just today!):

    http://www.clearfoundation.com/docs/developer/features/samba_pdc_and_bdc/start

    And then yours truly will integrate some of those items into a script to help ease the pain a bit.
    The reply is currently minimized Show
  • Accepted Answer

    Saturday, October 16 2010, 02:49 AM - #Permalink
    Resolved
    0 votes
    News?
    The reply is currently minimized Show
  • Accepted Answer

    Monday, August 16 2010, 10:26 PM - #Permalink
    Resolved
    0 votes
    Sorry. The initiative took a bit of a back seat with the last minute trip to the CompTIA Breakaway 2010 show. I'll circle around a little later this month.
    The reply is currently minimized Show
  • Accepted Answer

    Nik Bold
    Nik Bold
    Offline
    Monday, August 16 2010, 04:26 PM - #Permalink
    Resolved
    0 votes
    Hi have you got any further with your testing?

    I am looking for a way to to this for a client of mine.
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, July 07 2010, 02:28 PM - #Permalink
    Resolved
    0 votes
    Testing of a manual setup:
    Seems to be working in general (on the test bench anyway).
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, May 19 2010, 03:41 PM - #Permalink
    Resolved
    0 votes
    I have begun a manual solution in a test environment - still using ClearOS.
    I hope to get back to it as time permits
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, May 19 2010, 03:20 AM - #Permalink
    Resolved
    0 votes
    Chris,

    We will get there. As Peter indicated there are a few significant complexities that scream out for a simple solution. That is what we are trying to implement and deliver. Please bare with us for a little longer, it is coming.

    Summary of Current Status:
    You will find on this web site instructions for setting up LDAP replication. I have installed several sites that have a primary ClearOS Server and a second server that is an LDAP replicate.

    As things stand, it is not yet possible to use the webconfig interface on the second server (the LDAP replicate) to manage user and group accounts. Many services that can be configured on ClearOS 5.1 (and earlier) systems assumes to have full LDAP directory control.

    It is possible to manually set up a Samba BDC on a current manually configured LDAP replicate, but not only is this tedious, it is also risky in respect of MS Windows machine account updates (normally these happen every 7 days).

    There are a swag of things that simply have to be done right to make this workable and safe. We will get there, but like a good meal - the preparation of it can't be rushed. When we release the first cut of this we will need lots of volunteers to help break it (I mean test it).

    Cheers,
    John T.
    The reply is currently minimized Show
  • Accepted Answer

    Monday, May 17 2010, 03:23 PM - #Permalink
    Resolved
    0 votes
    We're hoping to make this possible (from the command line) in ClearOS Enterprise 5.2. In order to get a properly working PDC/BDC combination working, LDAP replication is required. That's a rather large roadblock given the complexities of getting all ClearOS applications running properly on a replicated node!
    The reply is currently minimized Show
Your Reply