[Samba] Sysvol replication with Unison for more than 2 server.

Min Wai Chan dcmwai at gmail.com
Sun Oct 5 12:58:52 MDT 2014


You will still have problem.

- When GPO are created on DC1, it will have the DC1 build UID and GID
- When this GPO is read on DC1 --> no problem
- When DC2 read this GPO, it will think that something is wrong as it have
a different UID and GID... GPO Manager will ask if you want to change the
- It might fail when DC2 want to sending this GPO but request was from
different UID/GID (in samba) and thus access are deny by linux core.

Not sure if I'm getting it right.
But I think that what happen :)

On Sun, Oct 5, 2014 at 11:46 PM, Ryan Ashley <ryana at reachtechfp.com> wrote:

> I have one quick question pertaining to this. If I sync but inherit
> permissions on new files/directories and leave existing permissions in
> place for updated, existing files, will I still need to copy idmap? I have
> been doing this and it SEEMS to be fine, but I may also have problems I am
> not aware of.
> On 10/4/2014 1:50 PM, steve wrote:
>> On 04/10/14 19:01, Min Wai Chan wrote:
>>> Dear Steve,
>>> Don't worry, I've got it taken care by changing the samba wiki
>>> https://wiki.samba.org/index.php/Join_a_domain_as_a_DC#
>>> Note_if_you_AD_DC_is_Samba
>>> :)
>> Excellent work. That is gonna save a lot of traffic on this list.
>> A minor point, here is the English if you have a moment:
>> If your DC is Samba
>> There are issues with UID/GID mapping between DCs for the built-in groups
>> who own files and directories under sysvol. As we have no method at the
>> moment to replicate the UID/GID from the existing Samba DCs, please try the
>> following:
>> Cheers,
>> Steve
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list