[Samba] Migrate w2k3 single label to samba4

Denis Cardon denis.cardon at tranquil-it-systems.fr
Wed Apr 8 03:46:46 MDT 2015 

Hi Dania,

> Hello thank you for you response:
>
> I would not like to give up.I'll try to see if I can change my domain
> to the correct dns structure , maybe then I could be migrated to
> samba4

you can do a domain rename on the win2k3 before switching to samba. But 
then you will have an issue with the AD Epoch [1] as it will be 
incremented to 1, and that is not supported either by samba4 AD right now.

I had that issue once too. You can fiddle with the 
ms-DS-ReplicationEpoch attribute and switch it back to 0 manually after 
domain rename, and samba4 will happily join the domain as a DC. But as 
Andrew Bartlett pointed in a previous post, you may/will run into issues 
with replication. You may check the quote from Andrew in the bugzilla [2]:

"The initial reaction of my contacts at Microsoft is that removing this 
value would be "catastrophic".  I strongly urge users of Samba and of 
Microsoft AD not to do this.  The reason is that this is a fundamental 
part of the replication state. "

If you really don't want to give up, and you don't have/need replication 
now and in the future, and your network is not mission critical, and you 
are ready to reprovision the domain and rejoin all the workstation in 
case of issue, then you may try to fiddle with the 
ms-DS-ReplicationEpoch attribute. I once did a win2k3 single label 
domain rename on a simple public library network with 20 workstations 
before switching to samba4, and the samba DC has been running fine for 
two years. You've been be warned :-)

Cheers,

Denis

[1] 
https://technet.microsoft.com/en-us/library/aa996670%28v=exchg.80%29.aspx
[2] https://bugzilla.samba.org/show_bug.cgi?id=9500

>
>
> 2015-04-07 13:48 GMT-04:00 Marcel de Reuver <marcel at de.reuver.org>:
>
>> Looks like Windows also does not support single label dc's anymore, see
>> http://support.microsoft.com/en-us/kb/300684 for the details.
>> So Samba will also not and will give errors......
>>
>> Regards, Marcel
>>
>> 2015-04-07 17:15 GMT+02:00 Dania Ramirez Moya <dania181087 at gmail.com>:
>>
>>> Hello list
>>> Has someone migrated w2k3 single label dc to samba4?
>>> I am trying but i get  several errores
>>> I would appreciate any help
>>> Best regards
>>> --
>>> To unsubscribe from this list go to the following URL and read the
>>> instructions:  https://lists.samba.org/mailman/options/samba
>>>
>>
>>

-- 
Denis Cardon
Tranquil IT Systems
Les Espaces Jules Verne, bâtiment A
12 avenue Jules Verne
44230 Saint Sébastien sur Loire
tel : +33 (0) 2.40.97.57.55
http://www.tranquil-it-systems.fr

More information about the samba mailing list