Issue running samba-ad-dc on RL8 with the NIST 800-171 policy enabled

moosemaimer · December 4, 2023, 5:33pm

I’m having an issue trying to get the Samba DC running with a security policy enabled. Fresh minimal VM install from the DVD image, I download and unzip the .tar, run the bootstrap.sh for Centos8S, ./configure make make install the source (default settings), set up the systemd service, and try to run it; but I hit the following error:

Nov 30 14:26:03 171-dc-test systemd[1]: Starting Samba Active Directory Domain Controller...
-- Subject: Unit samba-ad-dc.service has begun start-up
-- Defined-By: systemd
-- Support: https://lists.freedesktop.org/mailman/listinfo/systemd-devel
--
-- Unit samba-ad-dc.service has begun starting up.
Nov 30 14:26:03 171-dc-test samba[1449]: /usr/local/samba/sbin/samba: error while loading shared libraries: libevents-samba4.so: cannot open shared object file: No such file or directory
Nov 30 14:26:03 171-dc-test systemd[1]: samba-ad-dc.service: Control process exited, code=exited status=127
Nov 30 14:26:03 171-dc-test systemd[1]: samba-ad-dc.service: Failed with result 'exit-code'.
-- Subject: Unit failed
-- Defined-By: systemd
-- Support: https://lists.freedesktop.org/mailman/listinfo/systemd-devel
--
-- The unit samba-ad-dc.service has entered the 'failed' state with result 'exit-code'.
Nov 30 14:26:03 171-dc-test systemd[1]: Failed to start Samba Active Directory Domain Controller.
-- Subject: Unit samba-ad-dc.service has failed
-- Defined-By: systemd
-- Support: https://lists.freedesktop.org/mailman/listinfo/systemd-devel
--
-- Unit samba-ad-dc.service has failed.
--
-- The result is failed.

The file it’s looking for exists, where it should be:
-rwxr-xr-x. 1 root root 8192 Nov 30 14:09 /usr/local/samba/lib/private/libevents-samba4.so

Performing this exact procedure on another VM with no security policy enabled works perfectly. Setting selinux to permissive, stopping fapolicyd, and disabling FIPS mode & rebooting does not affect the results. Anybody know where I need to look to find out why this isn’t working? I’m assuming something is blocking access to that folder but I’m not sure what it would be. Thanks.

system · February 2, 2024, 5:34pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Rocky LInux 9.3 amavisd fails to start, failed with result 'exit-code' Rocky Linux General rocky-linux-9	3	309	March 23, 2024
Samba shares authenticated by Active Directory Rocky Linux General	23	3694	August 25, 2023
Cant log into rocky8.7 with domain credentials Rocky Linux General	10	860	August 25, 2023
Rocky Linux 9.2 - problème with cifs Rocky Linux General	9	1193	July 6, 2023
How to install and configure Samba on acomputer in a domain Rocky Linux General	7	1576	July 1, 2023

Issue running samba-ad-dc on RL8 with the NIST 800-171 policy enabled

Related Topics