net vampire - error

Magnus Benngård magnus.b at
Tue Oct 19 03:07:26 MDT 2010

./ldbsearch -H /usr/local/samba/private/sam.ldb -b '' -s base
# record 1
configurationNamingContext: CN=Configuration,DC=gbg,DC=inputinterior,DC=se
defaultNamingContext: DC=gbg,DC=inputinterior,DC=se
dsServiceName: CN=NTDS
rootDomainNamingContext: DC=gbg,DC=inputinterior,DC=se
supportedCapabilities: 1.2.840.113556.1.4.800
supportedCapabilities: 1.2.840.113556.1.4.1791
supportedCapabilities: 1.2.840.113556.1.4.1670
supportedCapabilities: 1.2.840.113556.1.4.1935
supportedCapabilities: 1.2.840.113556.1.4.2080
supportedLDAPVersion: 3
supportedLDAPVersion: 2
vendorName: Samba Team (
isSynchronized: TRUE
currentTime: 20101019090007.0Z
supportedControl: 1.2.840.113556.1.4.319
supportedControl: 1.2.840.113556.1.4.473
supportedControl: 1.2.840.113556.1.4.1504
supportedControl: 1.2.840.113556.1.4.801
supportedControl: 1.2.840.113556.1.4.801
supportedControl: 1.2.840.113556.1.4.805
supportedControl: 1.2.840.113556.1.4.529
supportedControl: 1.2.840.113556.1.4.417
supportedControl: 1.2.840.113556.1.4.1413
supportedControl: 1.2.840.113556.1.4.1413
supportedControl: 1.2.840.113556.1.4.1413
supportedControl: 1.2.840.113556.1.4.1339
supportedControl: 1.2.840.113556.1.4.1340
supportedControl: 1.2.840.113556.1.4.1413
namingContexts: DC=gbg,DC=inputinterior,DC=se
namingContexts: CN=Configuration,DC=gbg,DC=inputinterior,DC=se
namingContexts: CN=Schema,CN=Configuration,DC=gbg,DC=inputinterior,DC=se
highestCommittedUSN: 4887
domainFunctionality: 2
forestFunctionality: 2
domainControllerFunctionality: 4
isGlobalCatalogReady: TRUE

# returned 1 records
# 1 entries
# 0 referrals 

The reason why my machines are
in different subnet is that 1 box is in
Gothenburg and the other is in Malmö, 300 km away from each other. :) Have
to "build" a new box in Gothenburg and try to vampire, then they will be in
the same subnet. Gonna take a while because I am alone at my department
today... :( 

On Tue, 19 Oct 2010 11:24:23 +0300, Kamen Mazdrashki  wrote:  

Hi magnus,

2010/10/18 Magnus Benngård :
> Ok, lets try again...
> ./ldbdel -H /usr/local/samba/private/sam.ldb
> "CN=FS-MLM,CN=Computers,DC=gbg,DC=inputinterior,DC=se" -r
> Deleted 1 records
> Didn't get a match for the other 2 deletes...
> Inlcude the log when trying to "vampire"...
Log file looks a little bit strange just before the failure.
For some reason, your PDC doesn't return what is expected in RootDSE.

Another thing I've noticed is that your machines are in different networks.
Why is that?
PDC is in, and it seems the machine you are
vampiring with is in network.
I don't know what the exact problem
Samba may experience because
of this though. Just a note.

What I suggest is:
I will do a little bit more testing on my machine to see if there is
a bug with RootDSE searches (now I notice, that in log I've got from
Aaron few days ago, RootDSE contains duplicated attribute values, so
it seems there is a bug here)

In the meanwhile, could you check what RootDSE search gives you
against your PDC?
In case you don't know, you may do this by running something like:
> bin/ldbsearch -H ldap:// -b '' -s base
> bin/ldbsearch -H ldap:// -b '' -s base

And also, could you please try re-vampiring with the two machines in
same network?



