[Samba] Re: Transfering Machine Accounts / MACHINE.SID
Beast
indorama at rad.net.id
Mon Dec 29 09:34:02 GMT 2003
Saturday, December 27, 2003, 1:45:33 PM, Andrew wrote:
> On Sat, 2003-12-27 at 15:51, Beast wrote:
>> Saturday, December 27, 2003, 5:41:37 AM, Andrew wrote:
>> If I put PDC in slave ldap, is this means that it will update the
>> slave (because samaba will bind as ldap-root which has authority of
>> updating this replica)?
>> No way to prevent samba to using other ldap account to update the
>> directory?
> You should never list the Manager account as the replicator. Instead,
> create a new account, and use it only for the replication. That way,
> everybody who is not the replicator account will be forced to talk to
> the master.
This is expected behaviour :-)
as long as openldap did not support multimaster or samba can not
chasing update referral, i have to live with un-synch sambapassword
attributes in ldap :-(
--beast
More information about the samba
mailing list