projectz

Tech, Gadgets, Photography, Social Media and Poor Spelling

Question: How do i get my Linux DNS talking to the AD Network?

I really do hope this helps someone. It’s just turned a potential nightmare Monday into a far better one.

Scenario

you have an AD network on one subnet

192.168.1.0

255.255.255.0

and have another department on another subnet

192.168.2.0

255.255.255.0

there is communications between the two subnets, you can ping both ways, and from machines NOT on your AD network, you can connect over the router between the two machines no issues.

I’ve setup a DNS server on the 192.168.2.0 network which machines on that subnet use for domain requests.

However, when you try and connect between a machine on the second subnet, and a server on the first, you are asked to authenticate to the AD, which your PC is already a memeber of..

the answer is to add to the forward hosts file the following

_ldap._tcp.YOURDOMAIN.COM. SRV 0 0 389 YOURADSERVER.YOURDOMAIN.COM.

_kerberos._tcp.YOURDOMAIN.COM. SRV 0 0 88 YOURADSERVER.YOURDOMAIN.COM.

_ldap._tcp.dc._msdcs.YOURDOMAIN.COM. SRV 0 0 389 YOURADSERVER.YOURDOMAIN.COM.

_kerberos._tcp.dc._msdcs.YOURDOMAIN.COM. SRV 0 0 88 YOURADSERVER.YOURDOMAIN.COM.

(Obviously YOURDOMAIN.COM and YOURADSERVER.YOURDOMAIN.COM you need to change to reflect to your AD network)

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Information

This entry was posted on September 5, 2011 by in regular and tagged , , , , , .
%d bloggers like this: