| Anonymous | Login | 2024-11-21 02:02 MST |
| Main | My View | View Issues | Change Log | Roadmap | Repositories |
| View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | ||||||||
| ID | Project | Category | View Status | Date Submitted | Last Update | ||||
| 0014141 | ClearCenter | app-active-directory - Active Directory Connector | public | 2017-03-30 11:40 | 2018-10-30 19:47 | ||||
| Reporter | dloper | ||||||||
| Assigned To | user2 | ||||||||
| Priority | normal | Severity | minor | Reproducibility | always | ||||
| Status | resolved | Resolution | fixed | ||||||
| Platform | OS | OS Version | |||||||
| Product Version | 7.3.0 Updates | ||||||||
| Target Version | 7.6.0 Updates | Fixed in Version | 7.4.0 Updates | ||||||
| Summary | 0014141: Add AD DNS resolution for primary domain membership in DNSMasq on creation | ||||||||
| Description | The best practices for Active Directory connector should have the option for adding the split horizon DNS for the AD domain controller. This should be maintained on the join of the domain as a preliminary step and a DNS check can be made to validate that the information is correct before committing the join. The new field is optional but if specified will perform the following validation check: New Fields: AD DNS Server 1, AD DNS Server 2 AD DNS Server 1 = dns1 AD DNS Server 2 = dns2 AD Realm = var1 Domain Controller = var2 Validation check: var1 = tolower(var1) var2 = tolower(var2) dig @${dns1} srv _ldap._tcp.dc._msdcs.${var1} This must yield matches for the the $var2 on the answer section line. If it does not, the configuration is INVALID. If the value is valid then the add of the DNS configuration should be made preceeding the domain join: /etc/dnsmasq.conf: server=/${var1}/${dns1} server=/${var1}/${dns2} DNSMasq should be reloaded before the join. For more information, see these guides: https://www.clearos.com/resources/documentation/clearos/content:en_us:kb_o_splitting_dns_cache_to_use_specific_dns_server_for_domains [^] https://www.clearos.com/resources/documentation/clearos/content:en_us:kb_troubleshooting_the_ad_connector [^] | ||||||||
| Tags | No tags attached. | ||||||||
| Attached Files | |||||||||
 Relationships |
|
 Relationships |
|
Notes |
|
|
(0005351) dloper (administrator) 2017-04-11 12:24 edited on: 2017-04-11 12:31 |
dig @localhost srv _ldap._tcp.dc._msdcs.$(egrep "^realm" /etc/samba/smb.conf | awk -F" = " '{ print$2 }') | egrep "^_ldap\._tcp\.dc\._msdcs\.$(egrep "^realm" /etc/samba/smb.conf | awk -F" = " '{ print$2 }')\.\s[0-9]+\sIN\sSRV\s[0-9]+\s[0-9]+\s[0-9]+\s$(egrep "^password server" /etc/samba/smb.conf | awk -F" = " '{ print$2 }')\.$" assumes the separator for realm and 'password server' in smb.conf is a space equal space |
|
(0005441) user2 2017-04-25 20:11 |
The changes have been committed to master. |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2017-03-30 11:40 | dloper | New Issue | |
| 2017-04-11 12:24 | dloper | Note Added: 0005351 | |
| 2017-04-11 12:31 | dloper | Note Edited: 0005351 | View Revisions |
| 2017-04-25 11:26 | user2 | Issue cloned: 0014511 | |
| 2017-04-25 11:53 | user2 | Status | new => confirmed |
| 2017-04-25 20:11 | user2 | Note Added: 0005441 | |
| 2017-04-25 20:37 | user2 | Status | confirmed => resolved |
| 2017-04-25 20:37 | user2 | Fixed in Version | => 7.3.0 Updates |
| 2017-04-25 20:37 | user2 | Resolution | open => fixed |
| 2017-04-25 20:37 | user2 | Assigned To | => user2 |
| 2017-08-12 18:45 | user2 | Target Version | 7.3.0 Updates => 7.4.0 Updates |
| 2017-08-12 18:45 | user2 | Fixed in Version | 7.3.0 Updates => 7.4.0 Updates |
| 2018-07-16 12:59 | user2 | Target Version | 7.4.0 Updates => 7.5.0 Updates |
| 2018-10-30 19:47 | user2 | Target Version | 7.5.0 Updates => 7.6.0 Updates |
|
Issue History |