Hi Under what conditon does samba switch between domain controllers ? Are there any special conditions or situations in which samba decides to use "DC B" rather than "DC A" ? In my case samba switches very often. Thanks, Michel
On Thu, 14 Feb 2019 17:08:21 +0100 LOKO MESO Michel via samba <samba at lists.samba.org> wrote:> Hi > > Under what conditon does samba switch between domain controllers ? > Are there any special conditions or situations in which samba decides > to use "DC B" rather than "DC A" ? > > In my case samba switches very often.Well, seeing as you have a DC and another DC, for most things it doesn't matter, every DC is virtually identical, the only differences being some attributes that are never replicated between DC's and the FSMO roles and the latter can be on any DC. To put it another way, you cannot depend on connecting to the same DC and it doesn't matter, you should always get the same data returned. Rowland
On Thu, 14 Feb 2019 17:55:11 +0100 LOKO MESO Michel <mmeso at olfeo.com> wrote:> I agree the most important thing is to get the same data but does > samba take into consideration informations like the weight of the SRV > record or the response time of a DC or something else ? > >The SRV weights are all the same, I think it is all down to ldap, but as I said, as long as you get the correct data, what does it matter. Also, how does a Microsoft AD domain work, I think you will find it works the same. Rowland
On Fri, 15 Feb 2019 10:00:12 +0100 LOKO MESO Michel <mmeso at olfeo.com> wrote:> Thank you for your response. > > My server (debian) is joined to an AD and I'm trying to understand > how the communication between the two servers works. > > Does winbind check the response time of the DCs before switching to > the fastest ? Is it possible to specify which DC must be used by > winbind when joining the domain and to make sure that it does'nt > switch ?For joining another DC, you can add '--server=SERVER_TO_USE' to the join command. You can also use the same switch with the 'net ads join' command used to join a Unix domain member. I also believe you can specify which DC to use when joining a Windows machine. I don't believe you can make a domain joined computer use a particular DC and there is no reason to do so. There is loads of info available on the internet about how Active Directory works, most of it written by a small firm called Microsoft ;-) Rowland