Hi, I have a small but live samba4 AD (pure samba4, no Windows servers). My secondary (the one that was added 2nd) DC has expired, so I need to remove it from the domain. However the traditional Windows mechanism for doing this (deleting the entry from ADUC) doesn't work. I'm not sure if this was supposed to work, but the error I get is: Windows cannot delete object LDAP://<primarydcaddress>/CN=<2nddcname>,OU=Domain Controllers,DC=<orgname>,DC=<tld> because: The specified module could not be found. My guess is that method is not supposed to work. So given that I can't run a samba-tool demote (the server I wish to demote is not running), how do I remove it as a DC? Thanks, Tom.
On 07/12/2013 12:54 AM, Tom Seeley wrote:> Hi, > > I have a small but live samba4 AD (pure samba4, no Windows servers). > My secondary (the one that was added 2nd) DC has expired, so I need to > remove it from the domain. However the traditional Windows mechanism > for doing this (deleting the entry from ADUC) doesn't work. I'm not > sure if this was supposed to work, but the error I get is: > > Windows cannot delete object > LDAP://<primarydcaddress>/CN=<2nddcname>,OU=Domain > Controllers,DC=<orgname>,DC=<tld> because: The specified module could > not be found. > > My guess is that method is not supposed to work.Well it should work, so I would bump the log level on the dc1 to 4 and see in the log what the DC complains about. Which version of Samba 4 your DC are running ? Matthieu.