[Samba] Joining Second DC error -- NT_STATUS_CONNECTION_RESET
Marc Muehlfeld
mmuehlfeld at samba.org
Tue Aug 19 11:54:17 MDT 2014
Hello,
Am 19.08.2014 13:07, schrieb Chan Min Wai:
> If I've a snapshot of the server... (the only one)
>
> Can I rollback and create a backup (copying these /var/lib/samba/ offline)
> And move this to another server to do the backup?
>
> As I cannot create the backup last time because of the wrong LDflags I've
> compile...
>
> Please advise.
Was the snapshot made during runtime? Then you maybe have inconsistent
databases in your backup. But if the current live version is completely
broken, I would try that one of course. But only if this is your only
DC. Never restore a DC, if there is at least one healthy is online! The
replication could mix up your AD completely.
If at least one DC is healthy, join a new one and demote the broken
one(s). The problem is, that all ways to demote are currently broken:
- Via Windows: https://bugzilla.samba.org/show_bug.cgi?id=10595
- Via samba-tool: https://bugzilla.samba.org/show_bug.cgi?id=10734
But remember: When you go back to a backup of your AD, then all changes
done in the meantime are lost. And this are not just the obvious
ones(create/delete users, etc.). E. g. all Windows machines change their
machine account password per default every 30 days. So it could be
possible that machines that had changed their passwords meanwhile, have
to be re-joined to the domain.
Regards,
Marc
More information about the samba
mailing list