Does samba4 support to join windows server 2003 domain as RODC ?
Andrew Bartlett
abartlet at samba.org
Mon Aug 10 09:33:23 UTC 2015
On Mon, 2015-08-10 at 17:14 +0800, hy wu wrote:
> Hi list,
>
> I created a domain by using windows server 2003r2, then I tried to join as
> RODC , it failed.
>
> ============log=============
> [/mnt/HDA_ROOT] # /usr/local/samba/bin/samba-tool domain join test.ork RODC
> -U"administrator"
> Finding a writeable DC for domain 'test.ork'
> Found DC qnap03r2.test.ork
> Password for [WORKGROUP\administrator]:
> workgroup is TEST
> realm is test.ork
> ERROR(<type 'exceptions.KeyError'>): uncaught exception - 'No such element'
> File
> "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/__init__.py",
> line 175, in _run
> return self.run(*args, **kwargs)
> File
> "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/domain.py", line
> 558, in run
> dns_backend=dns_backend)
> File "/usr/local/samba/lib/python2.7/site-packages/samba/join.py", line
> 1047, in join_RODC
> mysid = ctx.get_mysid()
> File "/usr/local/samba/lib/python2.7/site-packages/samba/join.py", line
> 298, in get_mysid
> binsid = res[0]["tokenGroups"][0]
>
> ============log=============
>
>
> I checked get_mysid function in join.py, I found follow comment.
>
> '''get the SID of the connected user. Only works with w2k8 and
> later,
> so only used for RODC join'''
>
> So...
>
> If samba4 support join to 2003r2 domain as RODC in current verions ??
RODCs are not supported in Windows 2003 domains, they need server-side
functionality to be able to be a less-than-full DC.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the samba-technical
mailing list