Truenas Scale 23.10.1 Active Directory Issues

[bmariman]

Im trying to join my Scale server to AD. The AD server is on the same network. I have SRV records present. and The time is synced with the AD server. Whenever I try to join I keep getting an error message posted below.

The resolution lifetime expired after 10.404 seconds: Server 192.168.1.3 UDP port 53 answered The DNS operation timed out after 3.999 seconds; Server 192.168.1.3 UDP port 53 answered The DNS operation timed out after 3.999 seconds; Server 192.168.1.3 UDP port 53 answered The DNS operation timed out after 1.689 seconds

Anyone have any suggestions?

 

[wsoteros]

Hey @bmariman! Switched the code block to ICODE for you so it formats nicely!

Cheers!

 

[anodos]

Im trying to join my Scale server to AD. The AD server is on the same network. I have SRV records present. and The time is synced with the AD server. Whenever I try to join I keep getting an error message posted below.

The resolution lifetime expired after 10.404 seconds: Server 192.168.1.3 UDP port 53 answered The DNS operation timed out after 3.999 seconds; Server 192.168.1.3 UDP port 53 answered The DNS operation timed out after 3.999 seconds; Server 192.168.1.3 UDP port 53 answered The DNS operation timed out after 1.689 seconds

Anyone have any suggestions?

That means requests to DNS component of AD are timing out. There's an advanced AD option where you can bump the query lifetime to greater than 10 seconds, but that's a really long time to sevice a DNS request. Is 192.168.1.3 your DC?

 

[bmariman]

That means requests to DNS component of AD are timing out. There's an advanced AD option where you can bump the query lifetime to greater than 10 seconds, but that's a really long time to sevice a DNS request. Is 192.168.1.3 your DC?

Yes, 192.168.1.3 is my DC. I have bumped the timeout to 30 seconds and the same thing happens. This is the only server I have issues with trying to join to my DC. and I have over 2000 devices connected to my DC.

 

[anodos]

Yes, 192.168.1.3 is my DC. I have bumped the timeout to 30 seconds and the same thing happens. This is the only server I have issues with trying to join to my DC. and I have over 2000 devices connected to my DC.

Does local nslookup and dig work from TrueNAS? Timeouts at 30 seconds are quite surprising. Does your DC normally take this long to service requests?

 

[bmariman]

Does local nslookup and dig work from TrueNAS? Timeouts at 30 seconds are quite surprising. Does your DC normally take this long to service requests?

Yup both dig and nslookup works just fine from the shell.

 

[bmariman]

Does local nslookup and dig work from TrueNAS? Timeouts at 30 seconds are quite surprising. Does your DC normally take this long to service requests?

Also as far as I can tell my DC responds to service requests just fine. I have multiple people on my team joining computers to our domain every day and has not had issues.

 

[anodos]

What is the full python traceback? You can send me via PM.

 

[bmariman]

What is the full python traceback? You can send me via PM.

Can you tell me how to get that information for you?

 

[bmariman]

What is the full python traceback? You can send me via PM.

@anodos I sent the full message. I hope i did that correctly.