After a Samba AD controller joins the Windows domain, the DNS forwarders are not replicated. Is that because the FSMO roles are still with the Windows server and does that change as soon as I transfer these roles to the Samba AD server? Or do I have to manually record the DNS redirects either way on the Samba AD server?
On 23/05/2020 12:12, Daniel Betschart via samba wrote:> After a Samba AD controller joins the Windows domain, the DNS > forwarders are not replicated. Is that because the FSMO roles are still > with the Windows server and does that change as soon as I transfer > these roles to the Samba AD server? Or do I have to manually record the > DNS redirects either way on the Samba AD server?When you join a new DC to a domain (doesn't matter whether it is a Samba or Windows AD domain), there isn't a forwarders line set in smb.conf, you have to add it manually. You can do this two ways, either by editing the smb.conf file created by the join, or by adding --option='dns forwarder = xxx.xxx.xxx.xxx' to the join command. Transferring the FSMO roles will have no effect on the smb.conf Rowland
On Sat, 2020-05-23 at 13:12 +0200, Daniel Betschart via samba wrote:> After a Samba AD controller joins the Windows domain, the DNS > forwarders are not replicated. Is that because the FSMO roles are still > with the Windows server and does that change as soon as I transfer > these roles to the Samba AD server? Or do I have to manually record the > DNS redirects either way on the Samba AD server?In samba this is a per-DC smb.conf option, we don't honour the in- directory configuration for this item. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba