Samba BDC mode produces errors when configured across WAN VPN links
Migrated from: https://tracker.clearos.com/view.php?id=1247
Reported by: Dave Loper
Some errors have been detected which require intervention commands like this work:
smbclient -L slave -Uwinadmin
but normal join commands fail:
net rpc info
Unable to find a suitable server for domain DOMAIN
net getdomainsid
Can't fetch domain SID for name: SLAVE
^^ this one is interesting because the domain SID exists but not the local SID. The resolution for that is to discover the SID and issue net setlocalsid S-1-5-21-x-y-z
Even then joins to the local BDC fail...
net rpc join -Uwinadmin -Slocalhost
Enter winadmin's password:
error setting trust account password: NT_STATUS_UNSUCCESSFUL
Unable to join domain DOMAIN.
whereas a join specifying the PDC works.
Edited by Nick