Andrew Bartlett
2022-Oct-12 18:42 UTC
[Samba] Samba does not replicate attributes added via ldbmodify
On Wed, 2022-10-12 at 08:50 +0200, Ralf Spenneberg via samba wrote:> Hi there, > > we are using samba 4.14.12 with two dcs. We added several > proxyaddresses > via ldbmodify to some users on one DC. Unfortunately these are not > replicated to the other DC although "samba-tool drs showrepl" states > the > replication is successful without errors. > > Is there anything required to trigger the replication of the > proxyaddresses? Did I do something wrong? > > Thanks a lot for any hint.On the DC that is not getting the replication, have you forced replication? Does that help? samba-tool drs replicate Test with and without the --local option, which does the replication in the local python process and so will show errors more easily (you can turn up the log level of the command line tool with -d) Are other changes (password updates, other modifications) reflected compared with proxyAdddress? (And don't worry, it is not case sensitive and is self-correcting of case, if Samba accepts the modify it should replicate, as long as you don't access the files under sam.ldb.d/ directly). Andrew Bartlett -- Andrew Bartlett (he/him) https://samba.org/~abartlet/ Samba Team Member (since 2001) https://samba.org Samba Team Lead, Catalyst IT https://catalyst.net.nz/services/samba Samba Development and Support, Catalyst IT - Expert Open Source Solutions
Ralf Spenneberg
2022-Oct-13 06:08 UTC
[Samba] Samba does not replicate attributes added via ldbmodify
HI Andrew, thanks a lot for answering as well. Am 12.10.22 um 20:42 schrieb Andrew Bartlett via samba:> On the DC that is not getting the replication, have you forced > replication? > Does that help?No. Unfortunately not. Actually forcing the replication thinks everything is in order. # samba-tool drs replicate --local backup primary dc=ad,dc=domain,dc=de Partition[dc=ad,dc=domain,dc=de] objects[0] linked_values[0] Incremental replication of 0 objects and 0 links from primary to tdb:///var/lib/samba/private/sam.ldb was successful. > Are other changes (password updates, other modifications) reflected > compared with proxyAdddress? Yes I just checked. password updates are replicated.> (And don't worry, it is not case sensitive and is self-correcting of > case, if Samba accepts the modify it should replicate, as long as you > don't access the files under sam.ldb.d/ directly).Well, the ldbmodify usedc was: ldbmodify -v -H 'DC=AD,DC=DOMAIN,DC=DE.ldb' < /root/replace-proxyAddresses.ldif Does this count as modifying the files directly? Kind regards, Ralf -- OpenSource Security GmbH https://os-s.de Am Bahnhof 3 48565 Steinfurt Germany Fon: +49 25 52 927009-0 Fax: +49 25 52 927009-9 Registergericht: Amtsgericht Steinfurt, HRB 12044 Gesch?ftsf?hrer: Ralf Spenneberg, Hendrik Schwartke Umsatzsteuer-Identifikationsnummer gem. ?27a UStG: DE815773501