[Samba] DRS stopped working after upgrade from debian Jessie to Stretch
Andrew Bartlett
abartlet at samba.org
Wed Jun 21 08:47:51 UTC 2017
On Wed, 2017-06-21 at 11:20 +0400, Mike Lykov via samba wrote:
> 21.06.2017 5:23, Achim Gottinger via samba пишет:
>
> > Thank you works fine on an single test machine. Raise forest and domain
> > level to 2008_R2 and recerated the password with chgrdcpass.
> > Raising the functional level did not set the krbtgt password (it does if
> > the level is raised on an windows ad). But there is chgkrbtgtpass which
> > does the trick.
>
> Then, if I want upgrade samba too, and upgrade func. level too, I need
> to use this command againist every machine account?
This is for each DC.
> Now I have AD domain with two dc (samba 4.1.2) on win2003 f. level and
> ~150 desktops, mostly windows 7 .
Windows domain members will change their password every few weeks. I'm
not sure if we will add the AES bit to their account however, that
might still be TODO in the netlogon server.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the samba
mailing list