DEV Community

Nur Kholis M
Nur Kholis M

Posted on • Updated on

Unable to join domain

#activedirectory #rhel8 #sssd #joindomain

Issue

Unable to join domain to Active Directory server with these error

GSSAPI Error: Unspecified GSS failure. Minor code may provide more information (Server not found in Kerberos database) ...
! Couldn't authenticate to active directory: SASL(-1): generic failure: GSSAPI Error: Unspecified GSS failure. Minor code may provide more information (Server not found in Kerberos database) 
adcli: couldn't connect to [redacted] domain: Couldn't authenticate to active directory: SASL(-1): generic failure:  
! Insufficient permissions to join the domain realm: Couldn't join realm: Insufficient permissions to join the domain ...
Enter fullscreen mode Exit fullscreen mode

failed to joindomain

Caused

Some UDP port is blocked by firewall

53/udp  open
123/udp open|filtered
88/udp  open|filtered
389/udp open|filtered
464/udp open|filtered
137/udp open|filtered
138/udp open|filtered
636/udp open|filtered
Enter fullscreen mode Exit fullscreen mode

Resolution

Open firewall to UDP port on AD server

53/udp  open
123/udp open
88/udp  open|filtered
389/udp open
464/udp open|filtered
137/udp open|filtered
138/udp open|filtered
636/udp closed
Enter fullscreen mode Exit fullscreen mode

References

Top comments (0)

Read next

nft_research profile image

Publish Status Others X Space Recap: Web3 Users’ Crypto Asset Security in the New Asset Protocol Boom

NFT Research -

cuongnp profile image

Code Like a Pro: How to use templates in IntelliJ IDEA & VS Code

cuongnp -

purpose233 profile image

How to configure custom themes in VChart?

Melon -

abelroy profile image

Build a Calculator using HTML and JavaScript: A Hands-On Guide

Abel Roy -