Yeah, your post was one of my fonts while doing this. Thanks very much.
I used "--dns-backend=SAMBA_INTERNAL" like wiki says.
Thanks @dnutan. I really have these erros on journalctl:
[root@mds01fs01 ~]# journalctl -u sssd | grep 'tkey query'
Feb 26 01:01:23 mds01fs01.medisocial.lan sssd[1105]: tkey query failed: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Server not found in Kerberos database.
Feb 26 01:01:23 mds01fs01.medisocial.lan sssd[1105]: tkey query failed: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Server not found in Kerberos database.
Like I said, everything seems to work. It was pretty simple at the end, but I had to try it 10 times! This step of tutorial wasn’t working:
Now that nsdc is running with a Samba4 DC instance we can resume the join procedure. In the host machine:
fg
The problem was the time sync between Nethserver and old DC, I think. I was using Proxmox to test this, and when I rollback the snapshot to try again, it differs in time and the join process fails. After set the same time on both VMs, the join was OK and everything works great.
I will try it again on another installation, and will document it well this time.
Thanks for all.