[Samba] DC outage
Urs Golla
urs.golla at gmail.com
Fri Jul 11 09:07:35 GMT 2008
thanks for your reply. it will take me some time to test that. out dns
servers are definitely not DCs.
i have changed "password server" to * and restarted winbind, but "net
ads status" still shows the same DC. how can i force winbind to use a
different DC?
On 7/11/08, Michael Adam <ma at sernet.de> wrote:
> Hi Urs,
>
> you can also set something like "password server = dc1 dc2 *"
> to specify preferred domain controllers, but keep failover
> autodetection enabled. But when the join with "password server = *"
> does not work, this indicates that you have a problem with
> autodetection generally.
>
> In order for dc detection to work with security = ads, you
> need to have (among other things) a proper dns configuration
> so that your kdc and domain controller can be found via dns
> queries for srv records. Optimally, (one of your) domain
> controller(s) is the dns name server.
>
> If problems persist, could you post your smb.conf here?
>
> Cheers - Michael
>
> Urs Golla wrote:
> > Hi Michael
> >
> > Thats what I thought after reading the manual again. is this entry
> > needed for joining? as far as i remember, the join was not working
> > when i had no pw server defined. hm... i will test again.
> >
> > cheers
> >
> > On Thu, Jul 10, 2008 at 10:05 PM, Michael Adam <ma at sernet.de> wrote:
> > > Hi Urs,
> > >
> > > you should not set any specific password server in the smb.conf
> > > if you want DC failover to work. Instead, leave it at the default,
> > > which is *, so that dns lookups of srv records is enabled.
> > >
> > > Cheers, Michael
> > >
> > > Urs Golla wrote:
> > >> it is the latest stable from sernet for rhel4 32bit
> > >>
> > >> On Thu, Jul 10, 2008 at 6:27 PM, Jeremy Allison <jra at samba.org> wrote:
> > >> > On Thu, Jul 10, 2008 at 05:05:48PM +0200, Urs Golla wrote:
> > >> >> Hello
> > >> >>
> > >> >> We had an outage of one of our domain controllers today and all Linux
> > >> >> servers have lost their connection to the ADS. I always thought
> > >> >> winbind should switch to another DC if one is not reachable anymore.
> > >> >> The windows servers in the same domain switched to a new one. do i
> > >> >> have to specify more than 1 password server in smb.conf?
> > >> >
> > >> > No you shouldn't. What version of Samba is this ?
> > >> >
> > >> > Jeremy.
> > >> >
> > >> --
> > >> To unsubscribe from this list go to the following URL and read the
> > >> instructions: https://lists.samba.org/mailman/listinfo/samba
>
> --
> Michael Adam <ma at sernet.de> <obnox at samba.org>
> SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
> phone: +49-551-370000-0, fax: +49-551-370000-9
> AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen
> http://www.SerNet.DE, mailto: Info @ SerNet.DE
>
>
More information about the samba
mailing list