Replaced as instructed and ran the command. It claimed "success", however (RSAT) DNS Manager still shows demoted DC as SOA record. BTW, this demoted DC is now shut off. Suggestions?> Run this on a DC: > > samba-tool dns delete 127.0.0.1 samdom.example.com @ NS fqdn_string -U > Administrator > > Replace: 'samdom.example.com' with your dns domain name. > 'fqdn_string' with the old DCs fully qualified dns name, i.e. > dc.samdom.example.com > > Rowland > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >-- Thank you. Bob Wooden
On Fri, 9 Mar 2018 08:06:46 -0600 Robert Wooden <bob at donelsontrophy.com> wrote:> Replaced as instructed and ran the command. It claimed "success", > however (RSAT) DNS Manager still shows demoted DC as SOA record. > > BTW, this demoted DC is now shut off. > > Suggestions? >Try this: ldbsearch -H /usr/local/samba/private/sam.ldb --cross-ncs --show-binary -b 'DC=samdom.example.com,CN=MicrosoftDNS,DC=DomainDnsZones,DC=samdom,DC=example,DC=com' -s sub '(&(objectClass=dnsNode)(DC=@))' NOTE: it should all be on one line. It should produce the SOA record (after you make the obvious changes), what 'dnsRecord' objects does it show ? There should a 'DNS_TYPE_NS' and a 'DNS_TYPE_A' record for each DC. Is the dead DC amongst them ? Rowland
The "DNS_TYPE_NS" records show the correct DC's (both, I have two). The "DNS_TYPE_A" records show the correct DC's ip addresses. The "DNS_TYPE_SOA" shows the demoed DC FQDN in the "mname"> It should produce the SOA record (after you make the obvious changes), > what 'dnsRecord' objects does it show ? There should a 'DNS_TYPE_NS' > and a 'DNS_TYPE_A' record for each DC. Is the dead DC amongst them ? > > Rowland > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >-- Thank you. Bob Wooden
Apparently Analagous Threads
- Demoted dc not completely demoted, maybe?
- Demoted dc not completely demoted, maybe?
- Samba + BIND9 DLZ. DNS dosen't resolve FQDN, only short hostname
- samba 4.1.4 bind9 putrr: unhandled record type 0
- Authentication to Secondary Domain Controller initially fails when PDC is offline