[Samba] Samba4 - RODC - Credentials caching

Roman Dilken rdilken at gmx.de
Sun May 17 03:37:33 MDT 2015

Am Samstag, den 16.05.2015, 07:05 +0200 schrieb Andrew Bartlett:

> It will appear to work in some situations, but I'm not confident, for
> example, that if you change a user's password, that we will correctly
> see that on the RODC.  Also, preload due to a bad/missing Kerberos
> password isn't implemented. 

Yes, my still little experience is, that, if somebody changes his
password and the connection between RODC and DC gets offline,  the RODC
has still the old password in its cache. So you have to preload again
the user to get his new password into the RODC-Cache.

> > Also, in documentation there is no option, to allow for preloading whole
> > group of users, is that correct? The only possible way is to preload 1 user
> > at a time? (Only if the previous answer is "yes" ofc)
> Yes, preloading is something you will have to do per-user.  

Yes, it seems that this works only on per-user basis.



More information about the samba mailing list