I applied the 25.04 release onto my production system and got an error message that the AD join is suddenly faulted.
New alerts: * [KRB5KDC_ERR_PREAUTH_FAILED] Major (458752): No credentials were supplied, or the credentials were unavailable or inaccessible, Minor (2529638936): Preauthentication failed.
The upgrade was days before, i see not necessarily any connection but of course it is striking because it used to be working. Nothing was changed on the PDC and another TrueNAS Scale system with the same version does not exhibit the behavior.
I could not leave the domain via GUI. I was able to save the actual settings but continued to receive “Faulted”. I unticked enabled and saved and never was able to save with enable ticked afterwards. At one point, it was suggested to leave the domain and rejoin in the error message. I then deleted the Kerberos realm, the Kerberos Keytab and rebooted. Meanwhile i deleted the machine account in the Samba PDC with pdbedit -x -m $HOSTNAME and userdel $HOSTNAME. I then rejoined the domain successfully, rebuild the Directory Service Cache and the status is now Healthy. But after reboot, the status goes back to Faulted each time. And each time, i can rejoin to make the status back to Healthy.
Any idea what’s happening and how to get out of this evil circle?
Again, i did not change anything. DNS, IPs and hostnames are all the same and used to work. It’s like it dismantled itself.