[Samba] DC outage

Michael Adam ma at sernet.de
Fri Jul 11 08:40:22 GMT 2008 

Hi Urs, 

you can also set something like "password server = dc1 dc2 *" 
to specify preferred domain controllers, but keep failover
autodetection enabled. But when the join with "password server = *"
does not work, this indicates that you have a problem with
autodetection generally.

In order for dc detection to work with security = ads, you
need to have (among other things) a proper dns configuration
so that your kdc and domain controller can be found via dns
queries for srv records. Optimally, (one of your) domain
controller(s) is the dns name server. 

If problems persist, could you post your smb.conf here?

Cheers - Michael

Urs Golla wrote:
> Hi Michael
> 
> Thats what I thought after reading the manual again. is this entry
> needed for joining? as far as i remember, the join was not working
> when i had no pw server defined. hm... i will test again.
> 
> cheers
> 
> On Thu, Jul 10, 2008 at 10:05 PM, Michael Adam <ma at sernet.de> wrote:
> > Hi Urs,
> >
> > you should not set any specific password server in the smb.conf
> > if you want DC failover to work. Instead, leave it at the default,
> > which is *, so that dns lookups of srv records is enabled.
> >
> > Cheers, Michael
> >
> > Urs Golla wrote:
> >> it is the latest stable from sernet for rhel4 32bit
> >>
> >> On Thu, Jul 10, 2008 at 6:27 PM, Jeremy Allison <jra at samba.org> wrote:
> >> > On Thu, Jul 10, 2008 at 05:05:48PM +0200, Urs Golla wrote:
> >> >> Hello
> >> >>
> >> >> We had an outage of one of our domain controllers today and all Linux
> >> >> servers have lost their connection to the ADS. I always thought
> >> >> winbind should switch to another DC if one is not reachable anymore.
> >> >> The windows servers in the same domain switched to a new one. do i
> >> >> have to specify more than 1 password server in smb.conf?
> >> >
> >> > No you shouldn't. What version of Samba is this ?
> >> >
> >> > Jeremy.
> >> >
> >> --
> >> To unsubscribe from this list go to the following URL and read the
> >> instructions:  https://lists.samba.org/mailman/listinfo/samba

-- 
Michael Adam <ma at sernet.de>  <obnox at samba.org>
SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
phone: +49-551-370000-0, fax: +49-551-370000-9
AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen
http://www.SerNet.DE, mailto: Info @ SerNet.DE
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 206 bytes
Desc: not available
Url : http://lists.samba.org/archive/samba/attachments/20080711/fb1cde7b/attachment.bin

More information about the samba mailing list