similar to: Taking down domain controller and I don't want to upset winbind

On 03/09/2019 10:07, Marcio Demetrio Bacci via samba wrote: > Hi, > > I'm using Samba 4.10.7 with Bind9_DLZ (9.10.3-P4-Debian), but I'm not > getting to insert a new DC into the Domain. My SO is a VM Debian 9.9. > > Following is the command used and the error: > > root at samba4-dc3:/var/lib/samba/private# samba-tool domain join > empresa.com.br DC -k yes

On 04/04/15 03:29, Andrey Repin wrote: > Greetings, Rowland Penny! > >>>>>>>>>> I'm trying to get the former PDC back into domain after performing a >>>>>>>>> classic >>>>>>>>>> migration. >>>>>>>>>> AD DC is running fine... if you can call it that.

Thank you Denis and Rowland - I didn't realise this was the script, makes sense now. I've run it (on dc2) and it gets as far as: need update: SRV _ldap._tcp.mysite._sites.ForestDnsZones.mydomain.org.uk dc2.mydomain.org.uk 389 [lots of updates needed] 10 DNS updates and 0 DNS deletes needed Successfully obtained Kerberos ticket to DNS/dc1.mydomain.org.uk as DC2$ and then it fails here:

On 10/12/15 13:08, Ole Traupe wrote: > > > Am 09.12.2015 um 17:53 schrieb L.P.H. van Belle: >> Hai Ole, >> >> Can you run on the member where you logged in. >> >> host -t SRV _ldap._tcp.samdom.example.com. >> host -t SRV _kerberos._udp.samdom.example.com. >> >> host -t A dc1.samdom.example.com. >> host -t A dc2.samdom.example.com.

On Thu, 17 May 2018 13:11:36 -0400 lingpanda101 via samba <samba at lists.samba.org> wrote: > On 5/17/2018 12:45 PM, Carlos Bordon via samba wrote: > > Hi! > > > > i have 3 dcs with samba > > > > > > i demote bdc and replace it with dc2 with de same ip > > > > the replicate with dc1 is ok, and the replicate of dc3 with dc1 is > > ok,

On 03/04/15 21:29, Andrey Repin wrote: > Greetings, Rowland Penny! > >>>>>>>> I'm trying to get the former PDC back into domain after performing a >>>>>>> classic >>>>>>>> migration. >>>>>>>> AD DC is running fine... if you can call it that. >>>>>>>> I've edited the

> > Good, the _msdcs domain is the forest domain So is it normal that DC4 is not in that? > but are there records for all three DCs in: > > DC=your.domain.com > ,CN=MicrosoftDNS,DC=DomainDnsZones,DC=your,DC=domain,DC=com > I tried to find this path in the LDAP Browser and ASDI Edit but I did not manage in find it. In the Windows DNS Manager connected to DC1 I found _ldap

Ok, im using the RSAT tools so howto get more info and fix this. Start Active Directory Sites and Services Klik on Sites, Default-First-Site-Name - Server. Your should see you second DC also, if not, you can add it manualy. I dont know the samba-tools commands for this one. In the DNS admin. Go to _msdcs.YOURDOMAIN. Look at the aliasses. These are the names you need in Active Directory

> Obviously there is something wrong with the dns updates on DC2. Any > ideas? > > Tom > >The problem is (as far as I understand it), you cannot write to an >RODC, it forwards write actions to a writeable DC, which then replicates >them back. >From the above, it is timing out, is there a firewall or similar in the >way ? Can you ping a DC from the RODC ? >

Hello, I've finally decided to switch all FSMO roles from Windows 2008 R2 DC (vm-dc1) to one of the two Samba 4.12.3 DCs (vm-dc3). Here are several issues I've faced after that: 1. After connecting DNS Manager to the all DCs, I've found that the SOA record for my domain and msdcs zones still point to the former PDC - vm-dc1. Is that OK? 2. So, I've changed the SOA manually

On Sat, 20 Oct 2018 13:58:15 +0200 (CEST) tomict via samba <samba at lists.samba.org> wrote: > > > Just one thought, where does the nameserver on DC2 point ? > > Is it to DC1 ? > > or itself, DC2 ? > > > If it is pointing to itself, try pointing it at DC1 > > > Rowland > > The Nameserver on DC2 points to the ip address of DC1 > > Tom

Hi, All 3 of my DCs regularly display an error in syslog almost exactly every 10 minutes. They have been doing this for quite some time, and I have so far ignored the message as everything else DNS-wise seemed to mostly be working - but I figured it was worth getting to the bottom of it if I can. So this isn't new at all but rather something that has been present for some time. I am using

Hi! In Option "Inter-Site Transports", i have only  one the name "DEFAULTIPSITELINK" , in properties Sites in this link: Matriz Filial Matriz -> site with DC1 and DC2 Filail ->  site With DC3 Regards; On 17-05-2018 13:12, lingpanda101 wrote: > On 5/17/2018 12:07 PM, Carlos wrote: >> Hi! >> >> Thanks for answer. >> >> But, i allowed

Hi! i have 3 dcs with samba i demote bdc and replace it with dc2 with de same ip the replicate with dc1 is ok, and the replicate of dc3 with dc1 is ok, the problem is in dc2 with dc3 i found the problem, but i dont known how fixes when i do samba-tools drs showrepl in dc3 i see in connection appears the old dc named bdc and dont appears the new, dc2 i try with samba-tool drs replicate but

On 03/04/15 19:33, Andrey Repin wrote: > Greetings, Rowland Penny! > >>>>>> I'm trying to get the former PDC back into domain after performing a >>>>> classic >>>>>> migration. >>>>>> AD DC is running fine... if you can call it that. >>>>>> I've edited the smb.conf and nsswitch.conf as suggested in

On 5/17/2018 3:58 PM, Carlos wrote: > > Hi! > > In "NTDS settings" created new connection for: > > DC2 ->DC3 > > DC3 -> DC2 > > All OK, > > I tested with option > > kccsrv:samba_kcc=No > > is ok too. > > But in my DC2, a received one erro: > > May 17 16:54:44 dc2 samba[10421]: [2018/05/17 16:54:44.543336,  0] >

On 10/12/15 15:13, Ole Traupe wrote: > > > Am 10.12.2015 um 15:49 schrieb Rowland penny: >> On 10/12/15 14:40, Ole Traupe wrote: >>> >>>>> However, my 2nd DC is not that new, I restarted it many times, >>>>> just again (samba service). No DNS records are created anywhere. >>>>> >>>>> If I go through the DNS

( sorry ) I know about this sinds 28-may-2015 :-/ thats when i noticed this problem. Give me a few min, i'll get some more info. > -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens Rowland penny > Verzonden: donderdag 10 december 2015 14:50 > Aan: samba at lists.samba.org > Onderwerp: Re: [Samba] Authentication to Secondary

Am 17.12.2015 um 14:32 schrieb Rowland penny: > On 17/12/15 12:50, Ole Traupe wrote: >> >> I somehow doubt that. Still it seems that no one here has an idea of >> why log-on from member servers isn't working properly (for me). >> However, in the meantime I have created all the necessary DNS >> records. This can't be the issue anymore. >> >>

Hi all, I am experiencing strange behaviour regarding DNS resolution with my samba-driven AD. This is with Debian-packaged samba on raspberry Pi: # samba -V Version 4.19.5-Debian # uname -a Linux dc3.ad.mydomain.tld 6.1.0-rpi8-rpi-v8 #1 SMP PREEMPT Debian 1:6.1.73-1+rpt1 (2024-01-25) aarch64 GNU/Linux I would expect that every DNS server of the domain would respond with the same SOA record. But