Cannot Join AD

[ando1]

I have been trying for 2 days now and read several threads on how to join my FreeNAS 9.2.1.5 server to my AD domain. I have followed the directions to a tee on this link:
https://forums.freenas.org/index.ph...directory-folder-file-user-permissions.20610/

No matter what I do (caps/no caps for workgroup/domain) I still cannot start directory services.

Here is to output of /var/log/messages:

Oct 27 14:46:11 freenas smbd[67372]: [2015/10/27 14:46:11.254753, 0] ../source3/smbd/server.c:1278(main)

Oct 27 14:46:11 freenas smbd[67372]: standard input is not a socket, assuming -D option

Oct 27 14:50:36 freenas ActiveDirectory: /usr/sbin/service ix-kerberos quietstart

Oct 27 14:50:39 freenas ix-kerberos: generate_krb5_conf: krbhost=dc1.rsaops.lab, kpwdhost=dc1.rsaops.lab, domainname=rsaops.lab

Oct 27 14:50:39 freenas ActiveDirectory: /usr/sbin/service ix-nsswitch quietstart

Oct 27 14:50:39 freenas ActiveDirectory: /usr/sbin/service ix-kinit quietstart

Oct 27 14:50:51 freenas ActiveDirectory: /usr/sbin/service ix-kinit status

Oct 27 14:50:57 freenas ActiveDirectory: /usr/local/bin/python /usr/local/www/freenasUI/middleware/notifier.py stop cifs

Oct 27 14:50:59 freenas notifier: winbindd not running? (check /var/run/samba/winbindd.pid).

Oct 27 14:50:59 freenas notifier: Stopping smbd.

Oct 27 14:51:00 freenas notifier: Waiting for PIDS: 67373, 67373.

Oct 27 14:51:00 freenas notifier: nmbd not running? (check /var/run/samba/nmbd.pid).

Oct 27 14:51:00 freenas ActiveDirectory: /usr/sbin/service ix-kerberos quietstop

Oct 27 14:51:01 freenas ActiveDirectory: /usr/sbin/service ix-nsswitch quietstop

Oct 27 14:51:01 freenas ActiveDirectory: /usr/sbin/service ix-pam quietstop

Oct 27 14:51:01 freenas ActiveDirectory: /usr/sbin/service ix-kinit forcestop

Oct 27 14:51:01 freenas ActiveDirectory: /usr/sbin/service ix-activedirectory forcestop

Oct 27 14:51:04 freenas ActiveDirectory: /usr/sbin/service ix-cache quietstop &

Oct 27 14:51:05 freenas ActiveDirectory: /usr/sbin/service samba_server forcestop

Oct 27 14:51:05 freenas ActiveDirectory: /usr/sbin/service ix-samba start

Oct 27 14:51:06 freenas generate_smb4_conf.py: [common.pipesubr:58] Popen()ing: /sbin/sysctl -n 'kern.maxfilesperproc'

Oct 27 14:51:06 freenas generate_smb4_conf.py: [common.pipesubr:58] Popen()ing: zfs list -H -o mountpoint,name

Oct 27 14:51:06 freenas generate_smb4_conf.py: [common.pipesubr:58] Popen()ing: zfs list -H -o mountpoint

Oct 27 14:51:06 freenas generate_smb4_conf.py: [common.pipesubr:58] Popen()ing: /usr/local/bin/pdbedit -d 0 -i smbpasswd:/tmp/tmp2Tm5Je -e tdbsam:/var/etc/private/passdb.tdb -s /usr/local/etc/smb4.conf

-------------------------------------------------------------------------------------------------------------------------------






I have also ran testparm. Here is the output:

[root@FREENAS] ~# testparm

Load smb config files from /usr/local/etc/smb4.conf

max_open_files: increasing sysctl_max (11095) to minimum Windows limit (16384)

rlimit_max: increasing rlimit_max (11095) to minimum Windows limit (16384)

Processing section "[RSAOPS]"

Loaded services file OK.

Server role: ROLE_STANDALONE

Press enter to see a dump of your service definitions


[global]

dos charset = CP437

workgroup = RSAOPS.LAB

server string = FreeNAS Server

server role = standalone server

map to guest = Bad User

obey pam restrictions = Yes

smb passwd file = /var/etc/private/smbpasswd

private dir = /var/etc/private

max log size = 51200

deadtime = 15

max open files = 11070

hostname lookups = Yes

load printers = No

printcap name = /dev/null

disable spoolss = Yes

dns proxy = No

pid directory = /var/run/samba

panic action = /usr/local/libexec/samba/samba-backtrace

idmap config * : backend = tdb

acl allow execute always = Yes

create mask = 0666

directory mask = 0777

ea support = Yes

directory name cache size = 0

kernel change notify = No

map archive = No

map readonly = no

store dos attributes = Yes

strict locking = No


[RSAOPS]

path = /mnt/rsaops_pool/RSAOPS

read only = No

inherit acls = Yes

veto files = /.snap/.windows/.zfs/

vfs objects = zfsacl, streams_xattr, aio_pthread

zfsacl:acesort = dontcare

nfs4:chown = yes

nfs4:acedup = merge

nfs4:mode = special

recycle:subdir_mode = 0700

recycle:directory_mode = 0777

recycle:touch = yes

recycle:versions = yes

recycle:keeptree = yes

recycle:repository = .recycle/%U




Any help would be greatly appreciated!!

Thanks
Andy

 

[ando1]

Update: Solved the issue. It was a bonehead mistake that my NTP server was not properly synced with FreeNas!

 

[anodos]

FreeNAS 9.2.1.5 is ancient and has multiple security vulnerabilities, including a critical remote code execution / authentication bypass vulnerability in nmbd (the netbios name server portion of Samba). Update your server.

 

[m0nkey_]

I'm with @anados on this one. Update to the latest, if you're not capable of 64-bit, upgrade to 9.2.1.9.