[Samba] Re Version 4.1.13 can't join domain as BDC

Andrew Bartlett abartlet at samba.org
Fri Dec 5 12:39:14 MST 2014 

On Fri, 2014-12-05 at 22:29 +0300, Михаил wrote:
> Sat, 06 Dec 2014 07:19:29 +1300 from Andrew Bartlett <abartlet at samba.org>:
> >On Fri, 2014-12-05 at 11:50 +0300, Михаил wrote:
> >> Hi All
> >> 
> >> Having problem to join Samba as BDC in existing domain
> >> 
> >> PDC - w2003
> >> 
> >> Partition[DC=MKS,DC=lan,DC=net] objects[10114] linked_values[0]
> >> Refusing to replicate DC=NN\0ADEL:9aac4878-b274-4bf6-92aa-4f42e40d1c43,DC=MKS,DC=lan,DC=net from a read-only repilca into a read-write replica!
> >> Failed to convert object DC=NN\0ADEL:9aac4878-b274-4bf6-92aa-4f42e40d1c43,DC=MKS,DC=lan,DC=net: WERR_DS_DRA_SOURCE_IS_PARTIAL_REPLICA
> >> Failed to convert objects: WERR_DS_DRA_SOURCE_IS_PARTIAL_REPLICA
> >> Join failed - cleaning up
> >> 
> >> I understand that Samba cannot replicate tombstone object (*\0ADEL:*), because such objects are marked read-only. The main problem lies in the fact that replication are trying to replicate them into read-write.
> >
> >I think it is more complex than that.  What was DC=NN? 
> >
> >Andrew Bartlett
> 
> NN was subdomain. It was broken and deleted from PDC. After that i succesfuly promoted W2008 server to be temporary BDC. Now it is time to replace w2003 or w2008 server with Samba server, But remaining tumbstone (from NN) does not replicate into Samba server,
> 
> As a know, i can wait for garbage collection of NN and thek try again to move with Samba... 
> 
> Time goes by and cannot wait idly. And the fact that Windows server successfully promoted to BDC suggests that Samba has the problem that can be solved. ;)

Clearly this is something we will have to cope with in the future.
These objects can and should be replicated, we were just being cautious
for now.  One of the many things to fix up before we get proper
subdomain support.

The suggestion to age out (manually setting the tombstone shorter for a
day, and restoring it) the object seems the best option.

Andrew Bartlett

-- 
Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

More information about the samba mailing list