Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >

KB-1209: adjoin -s adds dns.dc entry to centrifydc.conf

Authentication Service ,   Mac & PC Management Service ,  

12 April,16 at 11:12 AM

Applies to:  DirectControl 4.0.x - 4.4.x running on all platforms


adclient has a problem with failover to another domain controller if the domain controller that it is currently connected to is either decommissioned or is having problems.


The reason may be that there is a spurious dns.dc entry in the /etc/centrifydc/centrifydc.conf file. The entry may be there if you've have run adjoin with the -s option or may have been added manually.


Remove the dns.dc entry from centrifydc.conf and run adreload.

To  check if you have a dns.dc entry pointing to the  decommissioned / problem domain controller, run the following command:

grep dns.dc /etc/centrifydc/centrifydc.conf


This issue has been fixed in DirectControl 5.1.0