While joining an existing windows 2003 AD with samba 4.0.9 as additional DC following this how-to: https://wiki.samba.org/index.php/Samba4/HOWTO/Join_a_domain_as_a_DC I am unable to add cname record to the _msdcs zone of my windows DNS: # samba-tool dns add IP-of-your-DNS _msdcs.samdom.example.com 737506d0-bfe6-40c8-815d-08c3dff7a67f CNAME DC2.samdom.example.com -Uadministrator ERROR(runtime): uncaught exception - (9601, 'WERR_DNS_ERROR_ZONE_DOES_NOT_EXIST') File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/__init__.py", line 175, in _run return self.run(*args, **kwargs) File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/dns.py", line 1053, in run 0, server, zone, name, add_rec_buf, None)
joining a windows ad dc to a samba ad or vice versa is not supported.
(In reply to Björn Jacke from comment #1) I'm not sure if the reporter is doing the right thing (windows should add the right records), and the limitations around sysvol are well known, but in general this should work and any bugs that prevent it are real issues we should resolve.
It is a long time since I try that but my domain is still here and my AD DC did not move. Since 2013 I did not retry samba 4 but it will be pleasure to give you more info if needed. For what I remember it was a problem regarding sambatool that fail to add the record into windows 2003 DNS even as administrator. I had check that Administrator have write right on all DNS zone but fail anyway.