[Samba] Additional Domain controller settings

Stuart Naylor stuartiannaylor at thursbygarden.org
Sun Mar 30 06:15:54 MDT 2014 

Apols mourik jan heupink - merit,


Just clicked reply, presumed it would go to the list.


Works for me if I add a forwarder.

PDC Samba1
/etc/samba/smb.conf
# Global parameters
[global]
        workgroup = SAMBA4
        realm = SAMBA4.LAN
        netbios name = SAMBA1
        server role = active directory domain controller
        dns forwarder = 192.168.1.1
        idmap_ldb:use rfc2307 = yes



ADC Samba2
/etc/samba/smb.conf
# Global parameters
[global]
        workgroup = SAMBA4
        realm = samba4.lan
        netbios name = SAMBA2
        server role = active directory domain controller






When you add an ADC the auto created smb.conf isn't the same.
I can understand the shares not being there and using Samba2 as my dns would fail on external DNS.
So I pasted the dns forwarder = 192.168.1.1 and smbcontrol all reload-config I was in business on the second dns.


Just confused if I should do the same with idmap_ldb:use rfc2307 = yes


Also running through https://wiki.samba.org/index.php/Samba4/HOWTO/Join_a_domain_as_a_DC with me being me I forgot to down the ADC first.


 host -t A dc2.samdom.example.com. and ldbsearch -H /var/lib/samba/private/sam.ldb '(invocationid=*)' --cross-ncs objectguid


Work after a reboot.


So after this I gave samba-tool fsmo a trial and everything works fine.


Thanks about the tip on having different forwarders on each DC as client settings will provide DNS redundancy.


So this took me to the stage of sysvol replication and the short term rsync methods.


M$ sysvol isn't really a file structure is it? Its a collection of datafiles that on change create what is represented as sysvol.


I was looking at the rsync and thinking hold on this shifts the whole sysvol from the PDC and just deletes items that are missing.


Isn't the sysvol replication method not much more than the briefcase method from win95 days.


Each server has a file monitor that is keeping time-stamps of updates and the replication is of only updates and its mechanism


is a database?


I say this as I am just wondering why sysvol replication hasn't been accomplished as its pretty important. Limiting changes


to the PDC does present many problems. It isn't a criticism just eager to employ Samba4.


Knowing microsoft everything is done via GUID's and Timestamps and the mechanism is a sort of FIFO update structure.


Just curious is the problem due to a lack of file GUID's on linux as I presume M$ use them as filenames are more problematic?





Is sysvol the next port of call or will the 4.1 series run and will this be a part of 4.2.


You can tell I am eager to employ Samba :)




 
 
-----Original message-----
> From:samba-request at lists.samba.org <mailto:samba-request at lists.samba.org>  <samba-request at lists.samba.org <mailto:samba-request at lists.samba.org> >
> Sent: Saturday 29th March 2014 18:00
> To: samba at lists.samba.org <mailto:samba at lists.samba.org> 
> Subject: samba Digest, Vol 135, Issue 39
> 
> Send samba mailing list submissions to
> 	samba at lists.samba.org <mailto:samba at lists.samba.org> 
> 
> To subscribe or unsubscribe via the World Wide Web, visit
> 	https://lists.samba.org/mailman/listinfo/samba
> or, via email, send a message with subject or body 'help' to
> 	samba-request at lists.samba.org <mailto:samba-request at lists.samba.org> 
> 
> You can reach the person managing the list at
> 	samba-owner at lists.samba.org <mailto:samba-owner at lists.samba.org> 
> 
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of samba digest..."
> Today's Topics:
> 
>    1. small dns question (mourik jan heupink - merit)
>    2. Re: Domain Upgrade (Ryan Bair)
>    3. Re: small dns question (Doug Meredith)
>    4. Re: small dns question (heupink)
>    5. FW: Compile kernel with Xeon instructions was: suggestions
>       for a "fast" fileserver - 1G / 10G - focus on smb.conf/samba
>       (Oscar Aparicio Holgado)
>    6. Re: Linux machine to join Samba Domain (vikas)
>    7. Re: Linux machine to join Samba Domain (steve)
>    8. Re: Linux machine to join Samba Domain (Rowland Penny)
>    9. Re: Linux machine to join Samba Domain (Robert Heller)
>   10. Re: Linux machine to join Samba Domain (steve)
>   11. Additional Domain controller settings (Stuart Naylor)
>   12. Re: Local account login failed when samba join to LDAP
>       (FC Mario Patty)
>   13. Re: Linux machine to join Samba Domain (vikas)
>   14. one day AD use -> samba-tool dbcheck reports "Normalisation
>       error for attribute 'objectClass'" (mourik jan heupink - merit)
>   15. Re: Linux machine to join Samba Domain (Nico Kadel-Garcia)
> _______________________________________________
> samba mailing list
> samba at lists.samba.org <mailto:samba at lists.samba.org> 
> https://lists.samba.org/mailman/listinfo/samba
>

More information about the samba mailing list