[Samba] Disaster recovery on PDC

Fabiano Felix felix at getnet.com.br
Fri Aug 27 17:36:44 GMT 2004 

OK, if I perform a fresh install and put the old secrets.tdb, the domain will work fine?

I use LDAP as backend, how I put the SID on LDAP? At this moment, I'm using the Samba 2.2.x (I can't found how to proceed).

A more specific case: one of my customers use the SUSE Linux Standard Server (with Samba 2.2.5 on install and after update Samba 2.2.8a), which provides an interface to install a PDC with LDAP and to manager the users/samba. On install, it create the domain (and the secrets.tdb). In case of disaster recovery, if I, on install finish, stop the service (or turn off the network service during install) and change the secrets.tdb, the domain will be OK?

Thanks and regards,

Fabiano Felix

On Aug 26, 2004 08:18 PM, Andrew Bartlett <abartlet at samba.org> wrote:

> On Thu, 2004-08-26 at 22:22, Fabiano Felix wrote:
> > Hi all,
> > 
> > I search about disaster recovery, but I can't understand how to 
> > proceed...
> > 
> > I perform backups on my PDC (data and configuration). My question 
> > is about secrets.tdb: according some docs, I can't install a new 
> > server and just put the secrets.tdb on samba configuration 
> > directory, because the SID it's specific. If I don't repair 
> > this file, the domain SID will be change and the machines can't 
> > locate the domain (and I have to put it again on domain).
> > 
> > How to proceed to repair a PDC without problems? (in moment, I'm 
> > using Samba 2.x, but I'll migrate to 3.x).
> 
> If you keep the same machine name, then it will not be an issue.
> 
> If you change the machine's name, then you should note the machine's
> sid, and follow some of the advise on this list for manually setting a
> machine/domain SID.
> 
> Samba 3.0 has command in 'net' to handle this, it's messier in Samba
> 2.2.
> 
> If your configuration is in LDAP, we make attempts to use the Domain SID
> maintained in LDAP, to avoid some of these issues.
> 
> Andrew Bartlett
> 
> -- 
> Andrew Bartlett                                 abartlet at samba.org
> Authentication Developer, Samba Team            http://samba.org
> Student Network Administrator, Hawker College   abartlet at hawkerc.net

More information about the samba mailing list