Ronny Preiss
2024-Jun-28 18:37 UTC
[Samba] DNS - pdc._msdcs.intern.preiss.network - 2 Entries after FSMO Transfer
Hi, After I have transferred the FSMO roles, there are 2 entries under pdc._msdcs.intern.preiss.network. One is the old DC 01-dc01.intern.preiss.network. and the new 01-dc03.intern.preiss.network. With samba-tool fsmo show and samba-tool dbcheck --cross-ncs no anomalies can be recognized on both DCs. samba-tool dbcheck --cross-ncs Checking 3927 objects Checked 3927 objects (0 errors) SchemaMasterRole owner: CN=NTDS Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network InfrastructureMasterRole owner: CN=NTDS Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network RidAllocationMasterRole owner: CN=NTDS Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network PdcEmulationMasterRole owner: CN=NTDS Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network DomainNamingMasterRole owner: CN=NTDS Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network DomainDnsZonesMasterRole owner: CN=NTDS Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network ForestDnsZonesMasterRole owner: CN=NTDS Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network Hence my question: Can I simply delete the old entry from 01-dc01.intern.preiss.network. using the Windows RSAT DNS tool? Best Regards, Ronny
Rowland Penny
2024-Jun-28 18:45 UTC
[Samba] DNS - pdc._msdcs.intern.preiss.network - 2 Entries after FSMO Transfer
On Fri, 28 Jun 2024 20:37:13 +0200 Ronny Preiss via samba <samba at lists.samba.org> wrote:> Hi, > > After I have transferred the FSMO roles, there are 2 entries under > pdc._msdcs.intern.preiss.network. > One is the old DC 01-dc01.intern.preiss.network. and the new > 01-dc03.intern.preiss.network. > > With samba-tool fsmo show and samba-tool dbcheck --cross-ncs no > anomalies can be recognized on both DCs. > > samba-tool dbcheck --cross-ncs > Checking 3927 objects > Checked 3927 objects (0 errors) > > SchemaMasterRole owner: CN=NTDS > Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network > InfrastructureMasterRole owner: CN=NTDS > Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network > RidAllocationMasterRole owner: CN=NTDS > Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network > PdcEmulationMasterRole owner: CN=NTDS > Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network > DomainNamingMasterRole owner: CN=NTDS > Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network > DomainDnsZonesMasterRole owner: CN=NTDS > Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network > ForestDnsZonesMasterRole owner: CN=NTDS > Settings,CN=01-DC03,CN=Servers,CN=foo,CN=Sites,CN=Configuration,DC=intern,DC=preiss,DC=network > > Hence my question: Can I simply delete the old entry from > 01-dc01.intern.preiss.network. using the Windows RSAT DNS tool?Yes, whilst there is code to add the new DCs dns data for the PDC_Emulator FSMO role, there is no code to remove the old dns data. There is bug report about this problem. Rowland