Marco Gaiarin
2018-Mar-22 10:14 UTC
[Samba] [OT?] Strangeness on clients migrating NT -> AD...
Mandi! Rowland Penny via samba In chel di` si favelave...> How is the 'old' server now set up ? > Is it now an AD DC domain member ?No, it remain in the old state, simply we have a tool that keep in sync passwords, so access works to the old server because users and password matches.> It sounds like the machines are still looking for the old PDC. How do > the win7 machines get their IP etc, or to put it another way, is DNS > set up correctly ?We have keep unchanged our DNS and DHCP setup: machines got dns as in previous configuration, the (old) dns simply forward requests to the AD domain subzones. DNS seems to work as expected. On win7 box, event viewer seems to have useful info... -- dott. Marco Gaiarin GNUPG Key ID: 240A3D66 Associazione ``La Nostra Famiglia'' http://www.lanostrafamiglia.it/ Polo FVG - Via della Bontà , 7 - 33078 - San Vito al Tagliamento (PN) marco.gaiarin(at)lanostrafamiglia.it t +39-0434-842711 f +39-0434-842797 Dona il 5 PER MILLE a LA NOSTRA FAMIGLIA! http://www.lanostrafamiglia.it/index.php/it/sostienici/5x1000 (cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)
Rowland Penny
2018-Mar-22 10:27 UTC
[Samba] [OT?] Strangeness on clients migrating NT -> AD...
On Thu, 22 Mar 2018 11:14:52 +0100 Marco Gaiarin via samba <samba at lists.samba.org> wrote:> Mandi! Rowland Penny via samba > In chel di` si favelave... > > > How is the 'old' server now set up ? > > Is it now an AD DC domain member ? > > No, it remain in the old state, simply we have a tool that keep in > sync passwords, so access works to the old server because users and > password matches.So, it sounds like you have a PDC for the domain 'DOMAIN' and an AD DC for the domain 'DOMAIN' both using the same SID, I don't think this is going to work. I suggest you turn the old PDC off.> > > > It sounds like the machines are still looking for the old PDC. How > > do the win7 machines get their IP etc, or to put it another way, is > > DNS set up correctly ? > > We have keep unchanged our DNS and DHCP setup: machines got dns as in > previous configuration, the (old) dns simply forward requests to the > AD domain subzones. >Your win7 machines should be using the AD DC as their dns server.> DNS seems to work as expected. On win7 box, event viewer seems to have > useful info... >If event viewer does have useful info, what is it ? Rowland
Marco Gaiarin
2018-Mar-22 10:47 UTC
[Samba] [OT?] Strangeness on clients migrating NT -> AD...
Mandi! Rowland Penny via samba In chel di` si favelave...> So, it sounds like you have a PDC for the domain 'DOMAIN' and an AD DC > for the domain 'DOMAIN' both using the same SID, I don't think this is > going to work. I suggest you turn the old PDC off.No no no! I'm not mad! ;-) There's the OLD PDC for the domain 'SVCORSI', and the new AD DC for the domain 'LNFFVG', with different SID! They are different domains!> > We have keep unchanged our DNS and DHCP setup: machines got dns as in > > previous configuration, the (old) dns simply forward requests to the > > AD domain subzones. > Your win7 machines should be using the AD DC as their dns server.Why?! Does not suffices to have working DNS? or the bind_dlz module do also some protocol extensions?> > DNS seems to work as expected. On win7 box, event viewer seems to have > > useful info... > If event viewer does have useful info, what is it ?Ahem, event viewer seems NOT to have useful info... sorry... -- dott. Marco Gaiarin GNUPG Key ID: 240A3D66 Associazione ``La Nostra Famiglia'' http://www.lanostrafamiglia.it/ Polo FVG - Via della Bontà , 7 - 33078 - San Vito al Tagliamento (PN) marco.gaiarin(at)lanostrafamiglia.it t +39-0434-842711 f +39-0434-842797 Dona il 5 PER MILLE a LA NOSTRA FAMIGLIA! http://www.lanostrafamiglia.it/index.php/it/sostienici/5x1000 (cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)