How do I prevent 'net ads join' from doing DDNS update?Is there a tool like 'route' in Linux to configure the forwarding entry (dst mac address --> interface)Two network cards - two routing tables?Have net ads join create a PTR recordMulti-homed forward zone DDNS updates always sent out the same network interface“net ads join” fails in puppet exec but runs OK directly from command lineKerberos net ads join doesn't respondInsufficient quota exists to complete this operation, net ads join“Unjoin” cloned SLES VM without “net ads leave”SSSD and Checking AD Domain Join Status via “net ads testjoin”Samba and AD - “net ads changetrustpw” fails
California: "For quality assurance, this phone call is being recorded"
Change TeXForm of ArcTan
How to properly maintain eye contact with people that have distinctive facial features?
How does increase in volume change the speed of reaction in production of NO2?
The term for the person/group a political party aligns themselves with to appear concerned about the general public
Are academic associations obliged to comply with the US government?
Can a rogue effectively triple their speed by combining Dash and Ready?
How can I grammatically understand "Wir über uns"?
arcpy.GetParameterAsText not passing arguments to script?
How was Apollo supposed to rendezvous in the case of a lunar abort?
How should I push back against my job assigning "homework"?
Did airlines fly their aircraft slower in response to oil prices in the 1970s?
Future enhancements for the finite element method
Asking bank to reduce APR instead of increasing credit limit
System.runAs for CspLitePortal Profile Users recently started returning no rows
Is a hash a zero-knowledge proof?
Humans meet a distant alien species. How do they standardize? - Units of Measure
Since Angular 8 uses @ViewChild, the new static option, how should I use it?
Accidentally cashed a check twice
How to write crossed north east and south east arrows?
Group manager threw me under the bus to save her friend
Why don't I have ground wiring on any of my outlets?
How to detach yourself from a character you're going to kill?
Can I ask a publisher for a paper that I need for reviewing
How do I prevent 'net ads join' from doing DDNS update?
Is there a tool like 'route' in Linux to configure the forwarding entry (dst mac address --> interface)Two network cards - two routing tables?Have net ads join create a PTR recordMulti-homed forward zone DDNS updates always sent out the same network interface“net ads join” fails in puppet exec but runs OK directly from command lineKerberos net ads join doesn't respondInsufficient quota exists to complete this operation, net ads join“Unjoin” cloned SLES VM without “net ads leave”SSSD and Checking AD Domain Join Status via “net ads testjoin”Samba and AD - “net ads changetrustpw” fails
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;
I'm using 'net ads join' to add Linux servers to an AD domain. The servers are multi-homed, with a public IP on eth1 and a non-routable private background network on eth0 (in the 172.20 space, used for netboots and installs and stuff -- no routing to the Internet on that network).
When I 'net ads join', it appears that a DDNS entry is getting created for the 172.20 interface. How can I prevent this from happening?
(FWIW, my powers at the AD level are very limited -- I can join servers and delete server records but that's about it...)
linux active-directory ddns
asked Apr 7 '10 at 15:30
genehackgenehack
483169
add a comment |
I'm using 'net ads join' to add Linux servers to an AD domain. The servers are multi-homed, with a public IP on eth1 and a non-routable private background network on eth0 (in the 172.20 space, used for netboots and installs and stuff -- no routing to the Internet on that network).
When I 'net ads join', it appears that a DDNS entry is getting created for the 172.20 interface. How can I prevent this from happening?
(FWIW, my powers at the AD level are very limited -- I can join servers and delete server records but that's about it...)
linux active-directory ddns
asked Apr 7 '10 at 15:30
genehackgenehack
483169
add a comment |
I'm using 'net ads join' to add Linux servers to an AD domain. The servers are multi-homed, with a public IP on eth1 and a non-routable private background network on eth0 (in the 172.20 space, used for netboots and installs and stuff -- no routing to the Internet on that network).
When I 'net ads join', it appears that a DDNS entry is getting created for the 172.20 interface. How can I prevent this from happening?
(FWIW, my powers at the AD level are very limited -- I can join servers and delete server records but that's about it...)
linux active-directory ddns
asked Apr 7 '10 at 15:30
genehackgenehack
483169
I'm using 'net ads join' to add Linux servers to an AD domain. The servers are multi-homed, with a public IP on eth1 and a non-routable private background network on eth0 (in the 172.20 space, used for netboots and installs and stuff -- no routing to the Internet on that network).
When I 'net ads join', it appears that a DDNS entry is getting created for the 172.20 interface. How can I prevent this from happening?
(FWIW, my powers at the AD level are very limited -- I can join servers and delete server records but that's about it...)
linux active-directory ddns
linux active-directory ddns
asked Apr 7 '10 at 15:30
genehackgenehack
483169
asked Apr 7 '10 at 15:30
genehackgenehack
483169
asked Apr 7 '10 at 15:30
genehackgenehack
483169
asked Apr 7 '10 at 15:30
genehackgenehack
483169
asked Apr 7 '10 at 15:30
genehackgenehack
483169
483169
add a comment |
add a comment |
3 Answers
3
active
oldest
votes
I believe that the list of interfaces (in the appropriately-named "interfaces" parameter) that are registered comes from the smb.conf file on the machine you're joining to the AD; if there is no such parameter, then all (non-loopback) interfaces get used.
Here's some documentation on that parameter, which doesn't come out and say the above but definitely implies it in a bunch of places (and also documents the ways you can specify the interfaces in that parameter, e.g., by name or even by netmask):
http://samba.org/~tpot/articles/multiple-interfaces.html
answered Apr 7 '10 at 20:16
delfuegodelfuego
23615
I just tested this on a fresh build, and unfortunately it does not work. I had 'lo eth1' in the 'interfaces' line in smb.conf and after 'net ads join', AD DNS is now delivering the IP for the eth0 interface (in addition to the eth1 interface -- but that is in the "real" DNS). Further suggestions welcomed...
– genehack
Apr 8 '10 at 20:31
add a comment |
My answer is probably based on new code which wasn't available when the original question was asked, but here it is:
When you do a net ads join, add the option "--no-dns-updates"
From "man net":
--no-dns-updates
Do not perform DNS updates as part of "net ads join".
answered May 16 at 18:51
Darcy PartridgeDarcy Partridge
111
add a comment |
The only way I've found to prevent the unwanted interface from being added is to down it while running the 'net ads join' command. Then it isn't added, and it can be manually brought back up afterwards. Now off to see about filing a Centos bug...
answered Apr 14 '10 at 18:31
genehackgenehack
483169
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f130152%2fhow-do-i-prevent-net-ads-join-from-doing-ddns-update%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
3 Answers
3
active
oldest
votes
3 Answers
3
active
oldest
votes
active
oldest
votes
active
oldest
votes
I believe that the list of interfaces (in the appropriately-named "interfaces" parameter) that are registered comes from the smb.conf file on the machine you're joining to the AD; if there is no such parameter, then all (non-loopback) interfaces get used.
Here's some documentation on that parameter, which doesn't come out and say the above but definitely implies it in a bunch of places (and also documents the ways you can specify the interfaces in that parameter, e.g., by name or even by netmask):
http://samba.org/~tpot/articles/multiple-interfaces.html
answered Apr 7 '10 at 20:16
delfuegodelfuego
23615
I just tested this on a fresh build, and unfortunately it does not work. I had 'lo eth1' in the 'interfaces' line in smb.conf and after 'net ads join', AD DNS is now delivering the IP for the eth0 interface (in addition to the eth1 interface -- but that is in the "real" DNS). Further suggestions welcomed...
– genehack
Apr 8 '10 at 20:31
add a comment |
I believe that the list of interfaces (in the appropriately-named "interfaces" parameter) that are registered comes from the smb.conf file on the machine you're joining to the AD; if there is no such parameter, then all (non-loopback) interfaces get used.
Here's some documentation on that parameter, which doesn't come out and say the above but definitely implies it in a bunch of places (and also documents the ways you can specify the interfaces in that parameter, e.g., by name or even by netmask):
http://samba.org/~tpot/articles/multiple-interfaces.html
answered Apr 7 '10 at 20:16
delfuegodelfuego
23615
I just tested this on a fresh build, and unfortunately it does not work. I had 'lo eth1' in the 'interfaces' line in smb.conf and after 'net ads join', AD DNS is now delivering the IP for the eth0 interface (in addition to the eth1 interface -- but that is in the "real" DNS). Further suggestions welcomed...
– genehack
Apr 8 '10 at 20:31
add a comment |
I believe that the list of interfaces (in the appropriately-named "interfaces" parameter) that are registered comes from the smb.conf file on the machine you're joining to the AD; if there is no such parameter, then all (non-loopback) interfaces get used.
Here's some documentation on that parameter, which doesn't come out and say the above but definitely implies it in a bunch of places (and also documents the ways you can specify the interfaces in that parameter, e.g., by name or even by netmask):
http://samba.org/~tpot/articles/multiple-interfaces.html
answered Apr 7 '10 at 20:16
delfuegodelfuego
23615
I believe that the list of interfaces (in the appropriately-named "interfaces" parameter) that are registered comes from the smb.conf file on the machine you're joining to the AD; if there is no such parameter, then all (non-loopback) interfaces get used.
Here's some documentation on that parameter, which doesn't come out and say the above but definitely implies it in a bunch of places (and also documents the ways you can specify the interfaces in that parameter, e.g., by name or even by netmask):
http://samba.org/~tpot/articles/multiple-interfaces.html
answered Apr 7 '10 at 20:16
delfuegodelfuego
23615
answered Apr 7 '10 at 20:16
delfuegodelfuego
23615
answered Apr 7 '10 at 20:16
delfuegodelfuego
23615
answered Apr 7 '10 at 20:16
delfuegodelfuego
23615
23615
I just tested this on a fresh build, and unfortunately it does not work. I had 'lo eth1' in the 'interfaces' line in smb.conf and after 'net ads join', AD DNS is now delivering the IP for the eth0 interface (in addition to the eth1 interface -- but that is in the "real" DNS). Further suggestions welcomed...
– genehack
Apr 8 '10 at 20:31
add a comment |
I just tested this on a fresh build, and unfortunately it does not work. I had 'lo eth1' in the 'interfaces' line in smb.conf and after 'net ads join', AD DNS is now delivering the IP for the eth0 interface (in addition to the eth1 interface -- but that is in the "real" DNS). Further suggestions welcomed...
– genehack
Apr 8 '10 at 20:31
I just tested this on a fresh build, and unfortunately it does not work. I had 'lo eth1' in the 'interfaces' line in smb.conf and after 'net ads join', AD DNS is now delivering the IP for the eth0 interface (in addition to the eth1 interface -- but that is in the "real" DNS). Further suggestions welcomed...
– genehack
Apr 8 '10 at 20:31
I just tested this on a fresh build, and unfortunately it does not work. I had 'lo eth1' in the 'interfaces' line in smb.conf and after 'net ads join', AD DNS is now delivering the IP for the eth0 interface (in addition to the eth1 interface -- but that is in the "real" DNS). Further suggestions welcomed...
– genehack
Apr 8 '10 at 20:31
add a comment |
My answer is probably based on new code which wasn't available when the original question was asked, but here it is:
When you do a net ads join, add the option "--no-dns-updates"
From "man net":
--no-dns-updates
Do not perform DNS updates as part of "net ads join".
answered May 16 at 18:51
Darcy PartridgeDarcy Partridge
111
add a comment |
My answer is probably based on new code which wasn't available when the original question was asked, but here it is:
When you do a net ads join, add the option "--no-dns-updates"
From "man net":
--no-dns-updates
Do not perform DNS updates as part of "net ads join".
answered May 16 at 18:51
Darcy PartridgeDarcy Partridge
111
add a comment |
My answer is probably based on new code which wasn't available when the original question was asked, but here it is:
When you do a net ads join, add the option "--no-dns-updates"
From "man net":
--no-dns-updates
Do not perform DNS updates as part of "net ads join".
answered May 16 at 18:51
Darcy PartridgeDarcy Partridge
111
My answer is probably based on new code which wasn't available when the original question was asked, but here it is:
When you do a net ads join, add the option "--no-dns-updates"
From "man net":
--no-dns-updates
Do not perform DNS updates as part of "net ads join".
answered May 16 at 18:51
Darcy PartridgeDarcy Partridge
111
answered May 16 at 18:51
Darcy PartridgeDarcy Partridge
111
answered May 16 at 18:51
Darcy PartridgeDarcy Partridge
111
answered May 16 at 18:51
Darcy PartridgeDarcy Partridge
111
111
add a comment |
add a comment |
The only way I've found to prevent the unwanted interface from being added is to down it while running the 'net ads join' command. Then it isn't added, and it can be manually brought back up afterwards. Now off to see about filing a Centos bug...
answered Apr 14 '10 at 18:31
genehackgenehack
483169
add a comment |
The only way I've found to prevent the unwanted interface from being added is to down it while running the 'net ads join' command. Then it isn't added, and it can be manually brought back up afterwards. Now off to see about filing a Centos bug...
answered Apr 14 '10 at 18:31
genehackgenehack
483169
add a comment |
The only way I've found to prevent the unwanted interface from being added is to down it while running the 'net ads join' command. Then it isn't added, and it can be manually brought back up afterwards. Now off to see about filing a Centos bug...
answered Apr 14 '10 at 18:31
genehackgenehack
483169
The only way I've found to prevent the unwanted interface from being added is to down it while running the 'net ads join' command. Then it isn't added, and it can be manually brought back up afterwards. Now off to see about filing a Centos bug...
answered Apr 14 '10 at 18:31
genehackgenehack
483169
answered Apr 14 '10 at 18:31
genehackgenehack
483169
answered Apr 14 '10 at 18:31
genehackgenehack
483169
answered Apr 14 '10 at 18:31
genehackgenehack
483169
483169
add a comment |
add a comment |
Thanks for contributing an answer to Server Fault!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f130152%2fhow-do-i-prevent-net-ads-join-from-doing-ddns-update%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
