Bug #3428
NethServer joined to AD fail Kerberos ticket renewal
| Status: | CLOSED | Start date: | ||
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: | - | % Done: | 100% | |
| Category: | nethserver-collectd | |||
| Target version: | v6.8 | |||
| Security class: | Resolution: | |||
| Affected version: | v6.8 | NEEDINFO: | No |
Description
On a NethServer joined to an AD domain the installation of "nethserver-collectd" package adds a fragment to the file "/etc/hosts" used to attribue the DNS name DNS.domain.tld to the primary DNS server configured in NethServer.
That fragment breaks the correct reverse lookup of primary dns server name that in AD scenarios is the AD PDC itself.
Before nethserver-collectd installation:
# config show dns
dns=configuration
NameServers=192.168.0.110
# host dc1.domain.tld
dc1.domain.tld has address 192.168.0.110
# host 192.168.0.110
110.0.168.192.in-addr.arpa domain name pointer dc1.domain.tld.
After nethserver-collectd installation:
# config show dns
dns=configuration
NameServers=192.168.0.110
# host dc1.domain.tld
dc1.domain.tld has address 192.168.0.110
# host 192.168.0.110
110.0.168.192.in-addr.arpa domain name pointer DNS.domain.tld.
This configuration prevents communication between NethServer and AD PDC needed for Kerberos ticket renewal.
Associated revisions
collectd/ping: ping dns using ipaddress instead of DNS hostname. Refs #3428
collectd/ping: ping dns using ipaddress instead of DNS hostname. Refs #3428
History
#1
Updated by Nicola Rauso almost 5 years ago
- Subject changed from NethServer joined to AD fail Kerberos ticket renewal to NethServer joined to AD fails Kerberos ticket renewal
#2
Updated by Nicola Rauso almost 5 years ago
- Description updated (diff)
#3
Updated by Filippo Carletti almost 5 years ago
- Subject changed from NethServer joined to AD fails Kerberos ticket renewal to NethServer joined to AD fail Kerberos ticket renewal
- Description updated (diff)
- Category set to nethserver-collectd
- Status changed from NEW to TRIAGED
- Assignee set to Filippo Carletti
- Target version set to v6.8
- % Done changed from 0 to 20
- Affected version set to v6.8
#4
Updated by Filippo Carletti almost 5 years ago
- Status changed from TRIAGED to ON_DEV
- % Done changed from 20 to 30
#5
Updated by Filippo Carletti almost 5 years ago
- Status changed from ON_DEV to MODIFIED
- % Done changed from 30 to 60
I've created a pull request from my fork:
https://github.com/NethServer/nethserver-collectd/pull/7
#6
Updated by Filippo Carletti almost 5 years ago
- Status changed from MODIFIED to ON_QA
- Assignee deleted (
Filippo Carletti) - % Done changed from 60 to 70
Package in nethserver-testing:
nethserver-collectd-2.0.3-1.1.g1bd5958.ns6.noarch.rpm
#7
Updated by Nicola Rauso almost 5 years ago
- Assignee set to Nicola Rauso
#8
Updated by Nicola Rauso almost 5 years ago
- Status changed from ON_QA to VERIFIED
- Assignee deleted (
Nicola Rauso) - % Done changed from 70 to 90
Tested: OK
#9
Updated by Giacomo Sanchietti almost 5 years ago
- Status changed from VERIFIED to CLOSED
- % Done changed from 90 to 100
- 6.8: nethserver-collectd-3.0.3-1.ns7.noarch.rpm
- 7.2.15155: nethserver-collectd-2.0.4-1.ns6.noarch.rpm