[PATCH] provide a common 'server role' handling across all of Samba

Andrew Bartlett abartlet at samba.org
Thu Nov 10 03:45:43 MST 2011

I've been working with Amitay to sort out issues that our users have
experienced when upgrading a Samba3 DC to Samba4.  The biggest reported
issues surround the fact that the Samba4 "server role" is not
interpreted, leading to weird failures and error messages.

This patch series creates a common handler for "server role", and
automatically sets it based on security= when not specified.

The reverse is also true, and security= is set from server role when
required, with the default for both being unset matching the current
default (a standalone server).

There is a reasonable volume to the patches, so I just wanted to mention
it here so folks are not surprised by the change, or confused into
thinking that the default behaviour has changed (it hasn't).  

Documentation for "server role" is also included.

For the curious, the patches are at:

Once these patches are in, I will look to alias "domain master" into a
boolean "pdc emulator" parameter for Samba3 DCs, and reduce
only found 2 places in the code (nmbd domain master browser, and part of
the SAMR server) that need to know about if we are actually a PDC, and I
wish to contain that distinction to those two spots. 


Andrew Bartlett
Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org

More information about the samba-technical mailing list