Attempting to set up a brand new Fedora 32 server samba server. Installed samba-dc rpms all good. Followed directions from [https://wiki.samba.org/index.php/Setting_up_Samba_as_an_Active_Directory_Domain_Controller] and when I attempt the kerberos tests I get errors. Specifically when I run host -t SRV _ldap._tcp.ad.example.org I get the following error: Host _kerberos._udp.ad.example.org not found: 3(NXDOMAIN). Same with host -t SRV _kerberos._udp.ad.example.org. I get the following error: Host _kerberos._udp.ad.example.org. not found: 3(NXDOMAIN)
(BTW, “example” replaces a real domain name)
If I run klist I get the following error: klist: No credentials cache found (filename: /tmp/krb5cc_0)
kinit: kinit: Cannot find KDC for realm “AD.EXAMPLE.ORG” while getting initial credentials
Below is my krb5.conf file created during the samba-tool domain provision process:
default_realm = AD.EXAMPLE.ORG
dns_lookup_realm = false
dns_lookup_kdc = true
fedora-ad = AD.EXAMPLE.ORG
Any ideas what could be wrong? I greatly appreciate any help.
thanks in advance.