我有一个ESXi 6虚拟机管理程序(esx.ad.example.com),我想通过一个DC加入AD域(ad.example.com)。域控制器(dc.ad.example.com)和系统管理程序都具有IPv6地址和有效的DNS。该域是全局可解析的,因此未设置自定义DNS服务器。此设置适用于Windows工作站或加入同一域的同一ESXi上的来宾。
真实域名不以example.com结尾,但出于隐私原因而被替换。挖出具有相同替代值的输出,此输出在世界上的多个位置都是一致的:
$ dig NS ad.example.com. +short
dc.ad.example.com.
$ dig AAAA ad.example.com. +short
2001:db8::ad:dc:1
$ dig AAAA dc.ad.example.com. +short @dc.ad.example.com
2001:db8::ad:dc:1
$ dig PTR 1.0.0.0.c.d.0.0.d.a.0.0.0.0.0.0.0.0.0.0.0.0.0.0.8.b.d.0.1.0.0.2.ip6.arpa. +short
dc.ad.example.com.
To make things clear: The domain ad.example.com uses AD-integrated DNS, but the Windows DNS server on the DC is non-resolving. A normal resolver, without any forwarders explicitly configured, will still forward all requests for *.ad.example.com to 2001:db8::ad:dc:1, because NS records are in place, as illustrated by the dig commands mentioned. If I would add @8.8.8.8 to the commands, the output would be the same. According to this Technet article, this means that the domain uses AD-integrated DNS.
In ESXi, under Configuration -> DNS and Routing, I have set Name to esx and Domain to ad.example.com. Then under Authentication Services I set Directory Services Type to Active Directory. I enter the domain ad.example.com, click Join and enter credentials. Within a second, the following message appears:
主机没有合适的FQDN。
在我的设置中,唯一不标准的事情是没有IPv4连接(并且设置起来很简单),否则我会说一切都由本书完成。除了ESXi拥有的默认防火墙外,主机之间没有数据包筛选器,我没有更改其默认值。可能是ESXi AD实施需要IPv4,还是其他错误?
4334
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
