Hi everyone.
i have a clearos 7 with active directory connector which always worked fine.
However we had to restore the Active Directory server using a 6 month old "image". With this I can no longer connect the clear to AD
running this command net ads join -U Administrator
the output is
gse_get_client_auth_token: gss_init_sec_context failed with [Unspecified GSS failure. Minor code may provide more information: Message stream modified](2529638953)
kinit succeeded but ads_sasl_spnego_gensec_bind(KRB5) failed for ldap/MIOSERVER with user[Administrator] realm[MIODOMINIO.LOCAL]: The attempted logon is invalid. This is either due to a bad username or authentication information.
Failed to join domain: failed to connect to AD: Invalid credentials
but the credential is correct
Any suggest
i have a clearos 7 with active directory connector which always worked fine.
However we had to restore the Active Directory server using a 6 month old "image". With this I can no longer connect the clear to AD
running this command net ads join -U Administrator
the output is
gse_get_client_auth_token: gss_init_sec_context failed with [Unspecified GSS failure. Minor code may provide more information: Message stream modified](2529638953)
kinit succeeded but ads_sasl_spnego_gensec_bind(KRB5) failed for ldap/MIOSERVER with user[Administrator] realm[MIODOMINIO.LOCAL]: The attempted logon is invalid. This is either due to a bad username or authentication information.
Failed to join domain: failed to connect to AD: Invalid credentials
but the credential is correct
Any suggest
Share this post:
Responses (7)
-
Accepted Answer
All I can do is google the error.
Have you seen the big pink box in https://documentation.clearos.com/content:en_us:7_ug_configuration_backup#restore_from_archive? I wrote that years ago but cannot remember the cause. -
Accepted Answer
I tried but it doesn't work.
But my situation is different. We reinstalled the AD server while the clearos remained unchanged.
In this way we had to remove the PCs from the domain and put them back in order to make them work correctly, although the server was an old clone of the windows server. -
Accepted Answer
There is a short troubleshooting guide at https://documentation.clearos.com/content:en_us:kb_troubleshooting_the_ad_connector, but I don't think it is relevant and I don't know where ClearOS keeps the AD credentials. -
Accepted Answer
-
Accepted Answer
No. The OpenVPN configs should be OK. the thing which breaks them is changing the server certificate.
I don't think removing the AD connector will help as I think it is Samba which is doing the heavy lifting. I don't see any obvious config files in the AD Connector. Will a "net ads leave ...." (or whatever the syntax is) help clear things out? -
Accepted Answer
-
Accepted Answer
Please login to post a reply
You will need to be logged in to be able to post a reply. Login using the form on the right or register an account if you are new here.
Register Here »