[Samba] samba4.1 RODC with BIND as DNS backend

Michael Brown michael at netdirect.ca
Tue Nov 19 12:32:50 MST 2013

On 13-11-19 01:32 PM, Andrew Bartlett wrote:
> We may need code in the DLZ module to ask it to outright refuse all
> modifications up front, and to never attempt to make modifications
> itself.  After all, it is an RODC.
Ah - until I looked it up I didn't realize RODC also included RO DNS:
* Read-only Active Directory database
* RODC filtered attribute set
* Unidirectional replication
* Credential caching
* Administrator role separation
* Read-only Domain Name System

OK, yep that should happen. :) That makes sense now.


Michael Brown               | `One of the main causes of the fall of
Systems Consultant          | the Roman Empire was that, lacking zero,
Net Direct Inc.             | they had no way to indicate successful
☎: +1 519 883 1172 x5106    | termination of their C programs.' - Firth

More information about the samba mailing list