Alexei Rozenvaser
2018-Jun-07  08:56 UTC
[Samba] chrony configuration for secondary samba DC
DC that doesn't holding PDC emulator FSMO role should sync it's time with DC that holdings such role. Right? But I can understand how it works in case of samba DC without PDC emulator FSMO role and with NTP server configured according to https://wiki.samba.org/index.php/Time_Synchronisation#Set_up_the_ntpd.conf_File_on_a_DC . Doesn't it create conflict between samba potential to sync time with other PDC emulator DC and NTP sever that syncs with some external NTP pool? On Sun, Jun 3, 2018 at 4:51 PM Rowland Penny via samba <samba at lists.samba.org> wrote:> > On Sun, 3 Jun 2018 16:29:04 +0300 > Alexei Rozenvaser via samba <samba at lists.samba.org> wrote: > > > Hi > > > > I'm running samba 4.7.6 on ubuntu 18.04 as (backup / secondary) domain > > controller > > No your not, you are just running Samba as another DC, all DCs are > equal except for the FSMO roles and they can be on any DC. > > >that joined to an Existing Active Directory (Windows > > 2012R2 server). > > The question is about Time Synchronization across the domain. > > How should I configure chrony v3.2 in order to provide time > > synchronization: > > apt-get purge chrony > apt-get install ntp > > then read this: > > https://wiki.samba.org/index.php/Time_Synchronisation > > Rowland > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba-- Alexei Rozenvaser
On Thu, 7 Jun 2018 11:56:16 +0300 Alexei Rozenvaser <alexei.roz at gmail.com> wrote:> DC that doesn't holding PDC emulator FSMO role should sync it's time > with DC that holdings such role. Right? > But I can understand how it works in case of samba DC without PDC > emulator FSMO role and with NTP server configured according to > https://wiki.samba.org/index.php/Time_Synchronisation#Set_up_the_ntpd.conf_File_on_a_DC > . Doesn't it create conflict between samba potential to sync time with > other PDC emulator DC and NTP sever that syncs with some external NTP > pool?To be honest, I have never given this much thought, I normally just set the DCs up identically and then get DHCP to send both DCs as time servers to Unix machines. I have a draft chrony wikipage, but I need to understand more about windows and time servers (I use Unix more than I use windows) before adding it. Rowland
On Thu, 7 Jun 2018 10:12:23 +0100 Rowland Penny via samba <samba at lists.samba.org> wrote:> On Thu, 7 Jun 2018 11:56:16 +0300 > Alexei Rozenvaser <alexei.roz at gmail.com> wrote: > > > DC that doesn't holding PDC emulator FSMO role should sync it's time > > with DC that holdings such role. Right? > > But I can understand how it works in case of samba DC without PDC > > emulator FSMO role and with NTP server configured according to > > https://wiki.samba.org/index.php/Time_Synchronisation#Set_up_the_ntpd.conf_File_on_a_DC > > . Doesn't it create conflict between samba potential to sync time > > with other PDC emulator DC and NTP sever that syncs with some > > external NTP pool? > > To be honest, I have never given this much thought, I normally just > set the DCs up identically and then get DHCP to send both DCs as time > servers to Unix machines. > > I have a draft chrony wikipage, but I need to understand more about > windows and time servers (I use Unix more than I use windows) before > adding it. > > Rowland >OK, after a bit of research, it seems it is quite simple, I like simple ;-) internet time server ^ | | PDC Emulator DC ^ ^ | | | | Other DC <----Workstation To put the above into words, the DC with the PDC Emulator role uses an external NTP server as its source. All other DCs use the PDC Emulator DC as their time server. All other workstations, servers etc, can use any DC as their time server. Rowland
Alexei Rozenvaser
2018-Jun-07  12:25 UTC
[Samba] chrony configuration for secondary samba DC
It wasn't particularly Chrony related question. The question applies to Samba DC that not holds PDC emulator FSMO role with any NTP server. On Thu, Jun 7, 2018 at 12:12 PM Rowland Penny via samba <samba at lists.samba.org> wrote:> > On Thu, 7 Jun 2018 11:56:16 +0300 > Alexei Rozenvaser <alexei.roz at gmail.com> wrote: > > > DC that doesn't holding PDC emulator FSMO role should sync it's time > > with DC that holdings such role. Right? > > But I can understand how it works in case of samba DC without PDC > > emulator FSMO role and with NTP server configured according to > > https://wiki.samba.org/index.php/Time_Synchronisation#Set_up_the_ntpd.conf_File_on_a_DC > > . Doesn't it create conflict between samba potential to sync time with > > other PDC emulator DC and NTP sever that syncs with some external NTP > > pool? > > To be honest, I have never given this much thought, I normally just set > the DCs up identically and then get DHCP to send both DCs as time > servers to Unix machines. > > I have a draft chrony wikipage, but I need to understand more about > windows and time servers (I use Unix more than I use windows) before > adding it. > > Rowland > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba-- Alexei Rozenvaser