[Samba] Sysvol replication with Unison for more than 2 server.
Rowland Penny
rowlandpenny at googlemail.com
Sat Oct 4 03:36:18 MDT 2014
On 04/10/14 09:46, Vash wrote:
> Rowland Penny <rowlandpenny <at> googlemail.com> writes:
>
> Hello!
>
>> Ahh, I dropped a right clanger there, when I said SID I meant RID, it
>> would seem that when you join a DC to a domain, idmap.ldb does not get
>> replicated to the new DC and so the RID's could be and probably are
>> different. This is not really a problem, just copy idmap.ldb from the
>> original DC to the new one.
>>
OK, clanger again
For RID read xidNumber ( definitely right this time)
> SID and uid/gid are not replicated between DCs.
Yes they are, if you create a new user on a DC, it will replicate to any
other DC's and if you examine the users SID on each DC, they will all be
the same.
> There is no need to copy idmap.ldb.
There is if you want to ensure that the builtin users have the same
xidNumbers on all DC's
> The right method should be to activate idmap_ldb:use rfc2307 = yes and NIS
> extensions.
Using rfc2307 should be the default (in my opinion), NIS extensions are
the default. But having said that, this has nothing to do with the problem.
>
> Read this document:
> https://wiki.samba.org/index.php/Using_RFC2307_on_a_Samba_DC
Read it, I could have written it :-D
>
> Instead I think SID and RID should be in sync between DCs, because mapping
> is stored in sam.ldb. Right?
correct, but as I said we really are discussing xidNumber's.
Rowland
> --
> Eros
>
>
More information about the samba
mailing list