Scénario #25320
Vérifier l'emplacement de la bibliothèque bind9 AD-T00-001c - Changement de backend DNS pour samba (2.7.0-b1)
Status:
Terminé (Sprint)
Priority:
Normal
Assigned To:
Category:
-
Target version:
Start date:
08/27/2018
Due date:
11/16/2018
% Done:
100%
Estimated time:
(Total: 1.00 h)
Spent time:
(Total: 1.00 h)
Story points:
1.0
Remaining (hours):
0.00 hour
Velocity based estimate:
Release:
Release relationship:
Auto
Description
Pas 2 et 6¶
Résultat attendu vide
Pas 7 et 8¶
Pb de résolution DNS
Peut-être du au fait que bind9 ne démarre pas au reconfigure¶
run-parts: executing /usr/share/eole/postservice/25-manage-samba reconfigure Samba/Seth reconfigure * Active Directory est initialisé, reload la configuration * Mise à jour du backend DNS Reading domain information DNS accounts already exist No zone file /var/lib/samba/private/dns/AC-TEST.FR.zone DNS records will be automatically created DNS partitions already exist Adding dns-dc1 account See /var/lib/samba/private/named.conf for an example configuration include file for BIND and /var/lib/samba/private/named.txt for further documentation required for secure DNS updates Finished upgrading DNS Samba/Seth reconfigure end
ct. 01 13:17:47 dc1 named[10712]: sizing zone task pool based on 5 zones oct. 01 13:17:47 dc1 named[10712]: Loading 'AD DNS Zone' using driver dlopen oct. 01 13:17:47 dc1 named[10712]: dlz_dlopen failed to open library '/usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_11.so' - /usr/lib/x86_64-linux-gnu/samba oct. 01 13:17:47 dc1 named[10712]: dlz_dlopen of 'AD DNS Zone' failed oct. 01 13:17:47 dc1 named[10712]: SDLZ driver failed to load. oct. 01 13:17:47 dc1 named[10712]: DLZ driver failed to load. oct. 01 13:17:47 dc1 named[10712]: loading configuration: failure oct. 01 13:17:47 dc1 named[10712]: exiting (due to fatal error) oct. 01 13:17:47 dc1 systemd[1]: bind9.service: Main process exited, code=exited, status=1/FAILURE oct. 01 13:17:47 dc1 systemd[1]: bind9.service: Failed with result 'exit-code'.
On a peut-être oublié ceci : https://wiki.samba.org/index.php/Changing_the_DNS_Back_End_of_a_Samba_AD_DC
Exécution Squash-TM¶
http://squash-tm.eole.lan/squash/executions/7908
Proposition¶
Voir pourquoi la bibliothèque n’est pas fournie.
Subtasks
Related issues
History
#1 Updated by Fabrice Barconnière almost 5 years ago
- Description updated (diff)
#2 Updated by Fabrice Barconnière almost 5 years ago
- Description updated (diff)
#3 Updated by Fabrice Barconnière almost 5 years ago
- Description updated (diff)
#4 Updated by Daniel Dehennin almost 5 years ago
- Subject changed from Correction AD-T00-001c - Changement de backend DNS pour samba (2.7.0-b1) to La backend Bind9 pour Samba doit fonctionner AD-T00-001c - Changement de backend DNS pour samba (2.7.0-b1)
- Description updated (diff)
- Parent task deleted (
#24655)
#5 Updated by Daniel Dehennin almost 5 years ago
- Tracker changed from Tâche to Scénario
- Due date set to 10/05/2018
- Release set to EOLE 2.7.0
#6 Updated by Daniel Dehennin almost 5 years ago
- Related to Scénario #25299: Correction AD-ECO-002-00 - Mise en place d'un RODC - (2.7.0-b1) added
#7 Updated by Scrum Master almost 5 years ago
- Target version changed from sprint 2018 38-40 Equipe MENSR to sprint 2018 41-43 Equipe MENSR
#8 Updated by Scrum Master almost 5 years ago
- Story points set to 1.0
#9 Updated by Scrum Master almost 5 years ago
- Subject changed from La backend Bind9 pour Samba doit fonctionner AD-T00-001c - Changement de backend DNS pour samba (2.7.0-b1) to Vérifier l'emplacement de la bibliothèque bind9 AD-T00-001c - Changement de backend DNS pour samba (2.7.0-b1)
#10 Updated by Benjamin Bohard almost 5 years ago
Vérifier apparmor :
apparmor="DENIED" operation="file_mmap" profile="/usr/sbin/named" name="/usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_11.so" pid=9275 comm="isc-worker0001" requested_mask="m" denied_mask="m" fsuid=110 ouid=0
Observé sur le pdc-ad1 dans la zone rie en cherchant l’origine du message d’erreur "dlz_dlopen failed to open library '/usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_11.so' - /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_11.so: failed to map segment from shared object"
#11 Updated by Benjamin Bohard almost 5 years ago
Modification testée et permettant de démarrer le démon named :
--- distrib/named.apparmor.conf 2018-10-02 16:35:51.000000000 +0200 +++ modif/named.apparmor.conf 2018-10-23 14:34:02.004920930 +0200 @@ -4,4 +4,7 @@ /var/lib/samba/private/dns.keytab r, /var/lib/samba/private/named.conf r, /var/lib/samba/private/dns/** rwk, +/usr/lib/x86_64-linux-gnu/samba/** m, +/usr/lib/x86_64-linux-gnu/ldb/** m, +/run/samba/winbindd/pipe rw, %end if
#12 Updated by Joël Cuissinat almost 5 years ago
- Target version changed from sprint 2018 41-43 Equipe MENSR to sprint 2018 44-46 Equipe MENSR
#13 Updated by Joël Cuissinat almost 5 years ago
- Assigned To set to Benjamin Bohard
#14 Updated by Joël Cuissinat almost 5 years ago
- Status changed from Nouveau to Terminé (Sprint)