[Samba] Standby secondary domain controller

Daniel Müller mueller at tropenklinik.de
Wed Feb 5 01:25:04 MST 2014

So in my case what happened: Environment of two samba4 servers replicating.
In order of setup the first provisioned went down. So the second it was joined as dc to the domain, still online.
Users who changed their password could not log in anymore in case the first started up again. Changed password of the users
was not replicated to the first dc. I had to set a new password for the users.    

EDV Daniel Müller

Leitung EDV
Tropenklinik Paul-Lechler-Krankenhaus
Paul-Lechler-Str. 24
72076 Tübingen 
Tel.: 07071/206-463, Fax: 07071/206-499
eMail: mueller at tropenklinik.de
Internet: www.tropenklinik.de 
"Der Mensch ist die Medizin des Menschen"

-----Ursprüngliche Nachricht-----
Von: Andrew Bartlett [mailto:abartlet at samba.org] 
Gesendet: Mittwoch, 5. Februar 2014 09:14
An: mueller at tropenklinik.de
Cc: 'Marc Muehlfeld'; 'David'; samba at lists.samba.org
Betreff: Re: [Samba] Standby secondary domain controller

On Mon, 2014-02-03 at 07:53 +0100, Daniel Müller wrote:
> The fact is in a windows environment with samba4 ads the master dc is 
> populating, replicating in one direction to the other slave dcs not 
> vice versa (like Openldap master master replication can).
> This should be a great feature making samba a step ahead of MS.

I'm not sure exactly what you are trying to say here, but a Samba AD Domain is a multi-master configuration.  There are some FSMO roles, but the vast majority of operations are conducted equally on any DC, and so for most purposes, there is no master/slave.

The notable exception is the RODC, but that is a very different beast.

Andrew Bartlett

Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

More information about the samba mailing list