I have a domain with multiple Samba DC, and one MS Server 2008 R2 DC.
The Samba servers came first and then I added the MS DC.
I am having problems replicating, it gives me a schema mismatch error.
If I run ldapcmp
./samba-tool ldapcmp ldap://DC1 ldap://DC2 -Uadministrator schema
--filter=whenChanged
Password for [MYDOMAIN\administrator]:
* Comparing [SCHEMA] context...
* Objects to be compared: 1550
Comparing:
'CN=Schema,CN=Configuration,DC=mydomain,DC=clima-tech,DC=com'
[ldap://DC1]
'CN=Schema,CN=Configuration,DC=mydomain,DC=clima-tech,DC=com'
[ldap://DC2]
Difference in attribute values:
instanceType =>
['13']
['5']
FAILED
* Result for [SCHEMA]: FAILURE
How do I resolve this difference I have done some looking to determine what the
13 and 5 represent but have not had any luck so far.
Does not look like a functional level issue but may be.
Wayne Andersen
System Administrator
Clima-Tech Corporation
208-947-1849
I have also experienced this issue. Additionally, new objects created in AD would show up on both the S4 DCs (4.5.x) and the Server2008R2 DC, but the password would not sync between them in either direction after the initial join replication. Thomas Maerz> On Oct 31, 2016, at 12:52 PM, Wayne Andersen via samba <samba at lists.samba.org> wrote: > > I have a domain with multiple Samba DC, and one MS Server 2008 R2 DC. > > The Samba servers came first and then I added the MS DC. > > > I am having problems replicating, it gives me a schema mismatch error. > > If I run ldapcmp > > ./samba-tool ldapcmp ldap://DC1 ldap://DC2 -Uadministrator schema --filter=whenChanged > Password for [MYDOMAIN\administrator]: > > * Comparing [SCHEMA] context... > > * Objects to be compared: 1550 > > Comparing: > 'CN=Schema,CN=Configuration,DC=mydomain,DC=clima-tech,DC=com' [ldap://DC1] > 'CN=Schema,CN=Configuration,DC=mydomain,DC=clima-tech,DC=com' [ldap://DC2] > Difference in attribute values: > instanceType => > ['13'] > ['5'] > FAILED > > * Result for [SCHEMA]: FAILURE > How do I resolve this difference I have done some looking to determine what the 13 and 5 represent but have not had any luck so far. > > Does not look like a functional level issue but may be. > > Wayne Andersen > System Administrator > Clima-Tech Corporation > 208-947-1849 > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba
On Mon, 2016-10-31 at 13:35 -0500, Thomas Maerz via samba wrote:> I have also experienced this issue. Additionally, new objects created > in AD would show up on both the S4 DCs (4.5.x) and the Server2008R2 > DC, but the password would not sync between them in either direction > after the initial join replication.Did you come up with a way to resolve this issue? I have the same problem; three original S4 DCs, a 2008R2 DC was added by consultants, and initial replication work... then not so well. S4-->R2 replication seems to occur. But R2-->S4 does not replicate reliably, due to schema errors [WERR_DS_ATT_NOT_DEF_IN_SCHEMA in logs]. Also passwords do not sync.> > On Oct 31, 2016, at 12:52 PM, Wayne Andersen via samba <samba at lists > > .samba.org> wrote: > > I have a domain with multiple Samba DC, and one MS Server 2008 R2 > > DC. The Samba servers came first and then I added the MS DC. > > I am having problems replicating, it gives me a schema mismatch > > error.-- Adam Tauno Williams <mailto:awilliam at whitemice.org> GPG D95ED383 Systems Administrator, Python Developer, LPI / NCLA