similar to: Issues with demoting a DC (contd): drs kcc doesn't help?

Thanks Rowland for your answer. these are sernet-packages from their subscription. There are 4 DCs (all with last sernet-rpms) 2 are demoted with probs (dc-01 and dc-02 both centos6) and 2 are running (dc-10 and dc-11 on centos 7) dc-11 has all fsmo. joining with the old dc-01 and dc-02 doesn´t even work. dc-01 joins but gives me this: Deleted

Dear list, in this corona crisis a delivery of a AD to a location abroad takes longer than I expected. I demoted the AD which is in delivery with samba-tool domain demote --remove-other-dead-server=ADDC3 If I know trigger a samba-tool drs showrepl I still see him in the list: CN=Configuration,DC=example,DC=com ??? NTDS DN: CN=NTDS

Thanks for all the information you guys have sent. I've figured out how to mount shared drives with smbmount, how to view a list of shares with smbclient, etc. I can also find plenty of documentation covering setting up samba as a domain controller in a Windows environment. However, what I cannot find much useful information on is how I can authenticate users of on a Linux system against an

Thanks Rowloand for the hint! I installed sernet-samba 4.7 and give it a try. Now I get: [root at dc-12 1]# samba-tool domain join obel.lan DC --realm=obel.lan -Uadministrator Finding a writeable DC for domain 'obel.lan' Found DC dc-11.obel.lan Password for [OBEL\administrator]: workgroup is OBEL realm is obel.lan Adding CN=DC-12,OU=Domain Controllers,DC=obel,DC=lan Adding

Dear list, After (almost) successfully removing a dead DC from my domain I am left with only one visible symptom: samba-tool drs showrepl shows two stale outbound link for one of the remaining 2 DCs: DC=DomainDnsZones,DC=subdom,DC=mydom,DC=com NTDS DN: CN=NTDS

Set on the newest DCs the following. ldap server require strong auth = no Should help but its adviced to remove it when your done. Greetz, Louis > -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens Paul > Littlefield via samba > Verzonden: vrijdag 25 mei 2018 16:46 > Aan: samba at lists.samba.org > Onderwerp: [Samba]

Hello! I'm trying to remove a DC from our samba domain (samba 4.17.4). It was the primary controller (with FSMO roles), - I successfully transferred the roles to another DC. Now it's time to demote: ai# samba-tool domain demote -U mjt-adm Using svdcp.tls.msk.ru as partner server for the demotion Password for [TLS\mjt-adm]: Deactivating inbound replication Asking partner server

On 6/26/2017 2:43 PM, Johannes Engel via samba wrote: > Dear list, > > After (almost) successfully removing a dead DC from my domain I am left > with only one visible symptom: > samba-tool drs showrepl shows two stale outbound link for one of the > remaining 2 DCs: > DC=DomainDnsZones,DC=subdom,DC=mydom,DC=com > NTDS DN: CN=NTDS >

Hello, I am running in a duplicate test environment of my work domain. I have 2 x 4.1 DCs and 2 x 4.7 DCs. I have transferred FSMO role to #3 and it is replicating to #4 fine. I have demoted #1 which appeared to go fine and have turned it off. When I try to demote #2 it fails with the error... Using dc3.domain.com as partner server for the demotion Password for [DOMAIN\administrator]:

may I extend the issue with some strange behaviour? Look here: installing the sernet 4.7 as mentioned above I can´t join the domain in a regular way. ONLY it works when I asked BOTH of the working DCs with 4.9.3 before I try without explicit naming of a server... ^^ Follow me here: [root at dc-02 etc]# samba-tool domain join obel.lan DC -U"OBEL\administrator" --realm=obel.lan

Hi, I have 2 DC Samba 4 in my network. My new DC is Samba 4.6.3 My Old DC is Samba 4.2.1 I want demote my DC (old) with Samba 4.2.1, but the following message appears: ~# samba-tool domain demote -Uadministrator Using dc1.empresa.com.br as partner server for the demotion Password for [EMPRESA\administrator]: Deactivating inbound replication Asking partner server dc1.empresa.com.br to

On Fri, 25 May 2018 14:46:21 +0000 Paul Littlefield via samba <samba at lists.samba.org> wrote: > Hello, > > I am running in a duplicate test environment of my work domain. > > I have 2 x 4.1 DCs and 2 x 4.7 DCs. > > I have transferred FSMO role to #3 and it is replicating to #4 fine. > > I have demoted #1 which appeared to go fine and have turned it off. >

Hi James, thanks a lot. However, in the Windows Sites & Services application the connection in question does not show up at all. It is only visible in the samba-tool output and only for the objects DomainDnsZones and ForestDnsZones... Best regards Johannes Am 27.06.2017 um 17:16 schrieb Johannes Engel: > > Hi James, > > thanks a lot. However, in the Windows Sites &

Cordialement, Doe Corp <https://www.openevents.fr/> <https://www.facebook.com/OPENevents-172305449504004/> <https://twitter.com/SocOPENevents> <https://www.linkedin.com/company/openevents/> Julien Téhéry Ingénieur Systèmes & Réseaux | OPENevents 15 avenue de l'Europe 86170 Neuville de Poitou phone : +33 5 49 62 26 03 <tel:+33549622603> mail :

Hi James, thanks a lot for your hint. However, I seem to be unable to find it there. Can you please be a little more specific? I tried to check the replication topology, but no success. Thanks a lot! Best regards Johannes lingpanda101 via samba <samba at lists.samba.org> schrieb am Mo., 26. Juni 2017 um 20:52 Uhr: > On 6/26/2017 2:43 PM, Johannes Engel via samba wrote: > > Dear

On 29/10/2019 00:47, Zombie Ryushu via samba wrote: > I am having issues with Samba DC replication between two directly > connected DCs. > > I don't understand what is wrong or how to fix it. Can someone advise? > > $ sudo samba-tool drs showrepl > Default-First-Site-Name\OLYMPIA > DSA Options: 0x00000001 > DSA object GUID: 50507d18-c8ee-4ef4-bbda-4d0d9bc31caa >

On 08/01/2023 11:04, Michael Tokarev via samba wrote: > Hello! > > I'm trying to remove a DC from our samba domain (samba 4.17.4). > It was the primary controller (with FSMO roles), - I successfully > transferred the roles to another DC.? Now it's time to demote: > > ai# samba-tool domain demote -U mjt-adm > Using svdcp.tls.msk.ru as partner server for the

On 10/29/19 6:14 AM, L.P.H. van Belle via samba wrote: > I'm pretty sure this is a resolving problem. > > Can you verify this: > https://wiki.samba.org/index.php/Verifying_and_Creating_a_DC_DNS_Record > Especialy these : for both guids and cross check if from both servers. > host -t CNAME 50507d18-c8ee-4ef4-bbda-4d0d9bc31caa._msdcs..... > > Can you post from both

Hi, I have three Samba Domain Controllers, two in the LAN local network (dc1 and dc2) and one in a remote network which is accessible from the LAN through a VPN connection (dc4). Every domain controller can reach every other domain controllers, and every type of traffic is permitted by firewalls, they can ping and access to every TCP and UDP ports. Checking the Samba replication I see that the

I'm pretty sure this is a resolving problem. Can you verify this: https://wiki.samba.org/index.php/Verifying_and_Creating_a_DC_DNS_Record Especialy these : for both guids and cross check if from both servers. host -t CNAME 50507d18-c8ee-4ef4-bbda-4d0d9bc31caa._msdcs..... Can you post from both server. /etc/hosts /etc/resolv.conf host servername host fqdn host servername @dns othere