[PATCH] [WIP] samba-tool demote improvements
Andrew Bartlett
abartlet at samba.org
Tue Sep 22 04:11:30 UTC 2015
One of the longest-running complaints about Samba4 is that removing an
offline, dead DC is really hard. Additionally, the suggestions to use
the windows GUI tool are not that useful either, as they just make the
same partially-implemented RPC call to samba to do the work :-)
This patch series doens't fix up that RPC call yet, but we now have
improved the 'samba-tool demote' command in these ways:
- a new -H option allows specification of a different sam.ldb to use
(very handy in testing)
- the --remove-other-dead-server changes from removing this DC, to
removing another DC. Because the DC is offline, all references, even
the computer account, are removed.
- A number of bugs, particularly around RODC support, have been fixed.
So far DNS is not yet handled, but when I finish this I plan to scan
DNS for records pointing at the DC, and to remove those.
It is tested in both modes, the --remove-other-dead-server mode is
tested from inside the KCC test, as that has a good multi-server
simulation based on an exported LDIF file.
The branch is at:
git://git.catalyst.net.nz/samba.git demote-dc
http://git.catalyst.net.nz/gw?p=samba.git;a=shortlog;h=refs/heads/demote-dc
Comments/thoughts/testing welcome.
Thanks,
Andrew Bartlett
--
Andrew Bartlett
https://samba.org/~abartlet/
Authentication Developer, Samba Team https://samba.org
Samba Development and Support, Catalyst IT
https://catalyst.net.nz/services/samba
More information about the samba-technical
mailing list