Following this thread: https://lists.samba.org/archive/samba/2025-April/251400.html We currently have 3 Samba (dc2, dc3, dc4) currently installed as secondaries for dc1, they are installed from debian 12 backports while dc1 is from a Turnkey Linux using an old version of samba, webmin, etc... I'm thinking about reinstalling to homogenize the infra. Is this the right way to do it: - Transfer FSMO from dc1 to dc2 (or another), backing up idmap.ldb and sysvol - Demote and shutdown dc1, removing any leftovers from dc1 in LDAP and DNS - Reinstall dc1 - Put back sysvol and idmap.ldb - Transfer back FSMO to dc1 Thanks -- Regards, Adnan R
Hi Adnan, Your steps look correct. There are no ?secondary? or ?primary? DCs. All equal except for FSMO roles. http://samba.bigbird.es/doku.php?id=samba:fsmo-roles You do not need to back up sysvol or idmap as they should be already synced with other DCs. http://samba.bigbird.es/doku.php?id=samba:sync-sysvol http://samba.bigbird.es/doku.php?id=samba:sync-idmap.ldb Regards, LP On 28 Apr 2025 at 17:39 +0100, Adnan R. via samba <samba at lists.samba.org>, wrote:> Following this thread: > https://lists.samba.org/archive/samba/2025-April/251400.html > > We currently have 3 Samba (dc2, dc3, dc4) currently installed as > secondaries for dc1, they are installed from debian 12 backports while > dc1 is from a Turnkey Linux using an old version of samba, webmin, > etc... > > I'm thinking about reinstalling to homogenize the infra. Is this the > right way to do it: > - Transfer FSMO from dc1 to dc2 (or another), backing up idmap.ldb and sysvol > - Demote and shutdown dc1, removing any leftovers from dc1 in LDAP and DNS > - Reinstall dc1 > - Put back sysvol and idmap.ldb > - Transfer back FSMO to dc1 > > Thanks > -- > Regards, Adnan R > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba
On Mon, 28 Apr 2025 17:22:47 +0200 "Adnan R. via samba" <samba at lists.samba.org> wrote:> Following this thread: > https://lists.samba.org/archive/samba/2025-April/251400.html > > We currently have 3 Samba (dc2, dc3, dc4) currently installed as > secondaries for dc1, they are installed from debian 12 backports while > dc1 is from a Turnkey Linux using an old version of samba, webmin, > etc... >No you haven't got a primary DC, you have 4 AD DCs (dc1, dc2, dc3 and dc4), they are all equal and there is no such thing as a primary DC (though one of them could hold all the FSMO roles, but it could be any of them). However your suggested method is sound.> I'm thinking about reinstalling to homogenize the infra. Is this the > right way to do it: > - Transfer FSMO from dc1 to dc2 (or another), backing up idmap.ldb > and sysvol > - Demote and shutdown dc1, removing any leftovers from dc1 in LDAP > and DNS > - Reinstall dc1 > - Put back sysvol and idmap.ldbThe following is optional:> - Transfer back FSMO to dc1There is no real need to do this, did I say that the FSMO roles could be on any DC ? Rowland