11 April,19 at 08:05 PM
Problem: On DirectControl 4.4.4, using adjoin -c specifying a specific container fails with: RPC Error(rc=0xc0000022): Access Denied This works on all other releases. Example: adjoin -V -u ian -c iltest.net/Servers/Unix -z linux iltest.net . . . Using RPC to create the computer account Unexpected RPC Error(rc=0xc0000022): Access Denied due to unexpected configuration or network error. Please try the --verbose option or run 'adinfo --diag' to diagnose the problem. Join to domain 'iltest.net', zone 'linux' failed. Cause: Except for version 4.4.4, using adjoin with a specified container, will switch to ldap to create the computer object (instead of SMB). But in the 4.4.4 release, this was refactored to disregard this consideration. Instead, it creates the computer object in the default container and then move it to target destination. However, if the user does not have permission to create objects in the default container - adjoin will fail with "Access Denied". Resolution: Use adjoin -l to force creating computer objects through ldap
KB-1879: Adjoin fails due to "unexpected RPC Error"
KB-2065: adjoin fails with "(kerberos) Authentication error"
KB-1579: adjoin failed with "(kerberos) Authentication error" after authoritative restore on windows server 2008
KB-1904: Why does adjoin fail with a message "invalid container specified in argument"?
KB-3308: adjoin fails with "KRB5 error code 68 for user xyz@US.yourdomain.local (enctype: ArcFour with HMAC/md5)"
KB-1767: How to adjoin when there are conflicting / duplicate SPNs in the forest
KB-1215: Error: One or more of the following SPNs already associated with other account in the forest
KB-1594: adjoin fails on Ubuntu for .local domains
KB-4694: adjoin fails in auto zone with "Computers" CN for a normal AD user