[Fwd: problems demoting samba4 DC]
Andrew Bartlett
abartlet at samba.org
Mon Jun 18 22:58:58 MDT 2012
On Mon, 2012-06-18 at 12:56 -0400, Greg Dickie wrote:
> OK I've moved beyond the last problem (by completely reinitializing the
> AD). Now I get another error:
>
>
> [root at hamba4 samba-master]# /usr/local/samba/bin/samba-tool domain
> demote
> Using MTL-DC1.example.local as partner server for the demotion
> Password for [administrator at EXAMPLE.LOCAL]:
> Desactivating inbound replication
> Asking partner server MTL-DC1.example.local to synchronize from us
> Changing userControl and container
> Error while demoting, re-enabling inbound replication
> ERROR(ldb): Error while changing account control - LDAP error 1
> LDAP_OPERATIONS_ERROR - <000004DC: LdapErr: DSID-0C0906E8, comment: In
> order to perform this operation a successful bind must be completed on
> the connection., data 0, v1db1> <>
>
> I've looked at this in domain.py and the only thing I can see is that
> there is no bind to the LDAP service in MTL-DC1 before searching for
> UAC.
>
> The question is, should demote work at this point or should I stop
> looking at it?
You need to authenticate. Please file a bug that we even try and go
this far without authentication.
Thanks,
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
More information about the samba-technical
mailing list