Environment
Novell Open Enterprise Server 2 SP3 (OES 2SP3)
Novell Open Enterprise Server 11 (OES11)
Domain Services for Windows
DSfW
Novell Open Enterprise Server 11 (OES11)
Domain Services for Windows
DSfW
Situation
DSfW install fails during DNS task - LDAP_NO_SUCH_OBJECT
Provisioning.log and ndsdcinit.log show:
>>>Creating DNS Zone object
2012-03-05 11:10:11 Creating zone ldif files in the directory
2012-03-05 11:10:11 Appending /var/opt/novell/xad/ds/dns/zone-object.ldif to /var/opt/novell/xad/ds/dns/final-fwd-zone.ldif
2012-03-05 11:10:11 Appending /var/opt/novell/xad/ds/dns/reverse-zone-object.ldif to /var/opt/novell/xad/ds/dns/final-rev-zone.ldif
2012-03-05 11:10:11 Creating/Updating the forward zone object
2012-03-05 11:10:11 connect and bind.. 192.168.0.10, 1636, cn=eDir_server,o=novell,
2012-03-05 11:10:11 /opt/novell/xad/lib64/perl/NDS/import.pm:103 Could not process the entry
2012-03-05 11:10:11 /opt/novell/xad/lib64/perl/NDS/import.pm:104 dn: cn=DsfwServer,ou=OESSystemObjects,o=novell
dNIPUpdatePolicy: grant * sam * A SRV PTR AAAA KEY
dNIPZoneType: 0
dNIPSecondaryZone: FALSE
dNIPZoneServers: cn=DNS_dsfwserver,ou=OESSystemObjects,o=novell
dNIPDesignatedServer: cn=DNS_dsfwserver,ou=OESSystemObjects,o=novell
dNIPZoneDomainName: jsi.com
dNIPSOAAdminMailbox: root.dsfwserver.novell.com
dNIPSOAZoneMaster: dsfwserver.novell.com
dNIPSOASerial: 20123100
dNIPSOARetry: 3600
dNIPSOARefresh: 10800
dNIPSOAMinimum: 86400
dNIPSOAExpire: 604800
objectClass: dNIPDNSZone
objectClass: Top
cn: novell_com
ACL: 7#subtree#cn=DNSDHCP-GROUP,ou=OESSytemObjects,o=novell#[Entry Rights]
ACL: 32#subtree#cn=DNSDHCP-GROUP,ou=OESSytemObjects,o=novell#[All Attributes Rights]
2012-03-05 11:10:11 /opt/novell/xad/lib64/perl/NDS/import.pm:105 LDAP_NO_SUCH_OBJECT:The server cannot find an object specified in the request
Could not import /var/opt/novell/xad/ds/dns/final-fwd-zone.ldif at /opt/novell/xad/lib64/perl/XAD/dns.pm line 208, <DATA> line 899.
at /opt/novell/xad/lib64/perl/Logger.pm line 119
Logger::_err('Could not import /var/opt/novell/xad/ds/dns/final-fwd-zone.ld...') called at /opt/novell/xad/lib64/perl/Logger.pm line 202
Logger::Log(0, 'Could not import /var/opt/novell/xad/ds/dns/final-fwd-zone.ld...') called at /opt/novell/xad/lib64/perl/XAD/dns.pm line 261
dns::configure_zone_object('frd_install=HASH(0x63c420)') called at /opt/novell/xad/lib64/perl/Install/frd_install.pm line 332
frd_install::configure_zone_object('frd_install=HASH(0x63c420)') called at /opt/novell/xad/share/dcinit/provision/provision_dns.pl line 45
2012-03-05 11:10:11,234 INFO - DNS Configuration:DNS Configuration returned.
Provisioning.log and ndsdcinit.log show:
>>>Creating DNS Zone object
2012-03-05 11:10:11 Creating zone ldif files in the directory
2012-03-05 11:10:11 Appending /var/opt/novell/xad/ds/dns/zone-object.ldif to /var/opt/novell/xad/ds/dns/final-fwd-zone.ldif
2012-03-05 11:10:11 Appending /var/opt/novell/xad/ds/dns/reverse-zone-object.ldif to /var/opt/novell/xad/ds/dns/final-rev-zone.ldif
2012-03-05 11:10:11 Creating/Updating the forward zone object
2012-03-05 11:10:11 connect and bind.. 192.168.0.10, 1636, cn=eDir_server,o=novell,
2012-03-05 11:10:11 /opt/novell/xad/lib64/perl/NDS/import.pm:103 Could not process the entry
2012-03-05 11:10:11 /opt/novell/xad/lib64/perl/NDS/import.pm:104 dn: cn=DsfwServer,ou=OESSystemObjects,o=novell
dNIPUpdatePolicy: grant * sam * A SRV PTR AAAA KEY
dNIPZoneType: 0
dNIPSecondaryZone: FALSE
dNIPZoneServers: cn=DNS_dsfwserver,ou=OESSystemObjects,o=novell
dNIPDesignatedServer: cn=DNS_dsfwserver,ou=OESSystemObjects,o=novell
dNIPZoneDomainName: jsi.com
dNIPSOAAdminMailbox: root.dsfwserver.novell.com
dNIPSOAZoneMaster: dsfwserver.novell.com
dNIPSOASerial: 20123100
dNIPSOARetry: 3600
dNIPSOARefresh: 10800
dNIPSOAMinimum: 86400
dNIPSOAExpire: 604800
objectClass: dNIPDNSZone
objectClass: Top
cn: novell_com
ACL: 7#subtree#cn=DNSDHCP-GROUP,ou=OESSytemObjects,o=novell#[Entry Rights]
ACL: 32#subtree#cn=DNSDHCP-GROUP,ou=OESSytemObjects,o=novell#[All Attributes Rights]
2012-03-05 11:10:11 /opt/novell/xad/lib64/perl/NDS/import.pm:105 LDAP_NO_SUCH_OBJECT:The server cannot find an object specified in the request
Could not import /var/opt/novell/xad/ds/dns/final-fwd-zone.ldif at /opt/novell/xad/lib64/perl/XAD/dns.pm line 208, <DATA> line 899.
at /opt/novell/xad/lib64/perl/Logger.pm line 119
Logger::_err('Could not import /var/opt/novell/xad/ds/dns/final-fwd-zone.ld...') called at /opt/novell/xad/lib64/perl/Logger.pm line 202
Logger::Log(0, 'Could not import /var/opt/novell/xad/ds/dns/final-fwd-zone.ld...') called at /opt/novell/xad/lib64/perl/XAD/dns.pm line 261
dns::configure_zone_object('frd_install=HASH(0x63c420)') called at /opt/novell/xad/lib64/perl/Install/frd_install.pm line 332
frd_install::configure_zone_object('frd_install=HASH(0x63c420)') called at /opt/novell/xad/share/dcinit/provision/provision_dns.pl line 45
2012-03-05 11:10:11,234 INFO - DNS Configuration:DNS Configuration returned.
Resolution
Start by looking at the y2log to see if Novell DNS was installed. Search the /var/log/YaST/y2log for NovellPatterns::GetSelectedPatterns()
What should be returned is the following:
NovellPatterns::GetSelectedPatterns() returned: ["dhcp_dns_server", "dhcp_
dns_server-32bit", "novell-base", "novell-base-32bit", "novell-dns", "novell-dns-32bit", "novell-domain-services", "novell-domain-services-32b
it", "novell-edirectory", "novell-edirectory-32bit", "novell-iprint", "novell-iprint-32bit", "novell-lum", "novell-lum-32bit", "novell-ncp", "
novell-ncp-32bit", "novell-nrm", "novell-nrm-32bit", "novell-nss", "novell-nss-32bit", "novell-sms", "novell-sms-32bit", "novell-web-services"
, "novell-web-services-32bit", "novell-welcome", "novell-welcome-32bit", "novell-xtier", "novell-xtier-32bit", "novell-yast2", "novell-yast2-3
2bit"]
This is for a 64 bit install. With a 32 bit you will not see the packages listed twice (64 and 32 bit). What is in bold must be installed. iPrint is not required. All other patterns are required including dhcp_dns server. If iManager is listed, that is ok or iPrint is not listed, that is ok. If dhcp_dns server does not show as a pattern selected that is the reason for the DNS task failure. The DSfW server will have to be removed and re-installed. Follow TID 7005431 to properly clean up the tree if this is the First DSfW server in the tree or for the domain. TID 7002172 provides steps to ensure a successful install.
If DNS is installed, check the y2log for errors during the configuration of DNS. Most likely the object listed for the dNIPDesignatedServer attribute in the ldif does not exist or the DNSDHCP-GROUP object show in the ACL section of the ldif does not exist.
What should be returned is the following:
NovellPatterns::GetSelectedPatterns() returned: ["dhcp_dns_server", "dhcp_
dns_server-32bit", "novell-base", "novell-base-32bit", "novell-dns", "novell-dns-32bit", "novell-domain-services", "novell-domain-services-32b
it", "novell-edirectory", "novell-edirectory-32bit", "novell-iprint", "novell-iprint-32bit", "novell-lum", "novell-lum-32bit", "novell-ncp", "
novell-ncp-32bit", "novell-nrm", "novell-nrm-32bit", "novell-nss", "novell-nss-32bit", "novell-sms", "novell-sms-32bit", "novell-web-services"
, "novell-web-services-32bit", "novell-welcome", "novell-welcome-32bit", "novell-xtier", "novell-xtier-32bit", "novell-yast2", "novell-yast2-3
2bit"]
This is for a 64 bit install. With a 32 bit you will not see the packages listed twice (64 and 32 bit). What is in bold must be installed. iPrint is not required. All other patterns are required including dhcp_dns server. If iManager is listed, that is ok or iPrint is not listed, that is ok. If dhcp_dns server does not show as a pattern selected that is the reason for the DNS task failure. The DSfW server will have to be removed and re-installed. Follow TID 7005431 to properly clean up the tree if this is the First DSfW server in the tree or for the domain. TID 7002172 provides steps to ensure a successful install.
If DNS is installed, check the y2log for errors during the configuration of DNS. Most likely the object listed for the dNIPDesignatedServer attribute in the ldif does not exist or the DNSDHCP-GROUP object show in the ACL section of the ldif does not exist.