I'm migrating a Samba DC that uses Bind9, but when I try to start Bind on the new DC, a permission error is displayed. Reading some links I saw that the apparmor can be a problem, however it is not mounted. What should I do to solve this problem?
Software versions:
- Debian: 11.6
- Samba: 4.13.13
- Bind: 9.16.33
Consulted links:
https://serverfault.com/questions/715317/named-running-as-root-cannot-read-named-conf
https://serverfault.com/questions/412012/ubuntu-bind9-apparmor-read-permission-denied-chroot-jail
Output journalctl -xe:
named[4664]: /etc/bind/named.conf:15: open: /samba/restore/bind-dns/named.conf: permission denied
named[4664]: loading configuration: permission denied
named[4664]: exiting (due to fatal error)
Output aa-status:
apparmor module is loaded.
apparmor filesystem is not mounted.
/samba/restore/bind-dns directory permissions:
drwxrwx--- 3 root bind 4,0K dez 27 14:31 .
drwx------ 7 root root 4,0K dez 27 14:22 ..
drwxrwx--- 3 root bind 4,0K dez 27 14:24 dns
-rw-r----- 2 root bind 508 dez 27 14:24 dns.keytab
-rw-r--r-- 1 root bind 1,1K dez 27 14:24 named.conf
-rw-r--r-- 1 root bind 2,1K dez 27 14:24 named.txt
lrwxrwxrwx 1 root root 30 dez 27 14:31 sam.ldb -> /samba/restore/private/sam.ldb
lrwxrwxrwx 1 root root 32 dez 27 14:31 sam.ldb.d -> /samba/restore/private/sam.ldb.d
