[Samba] transfer fsmo role using ldap
Rowland Penny
rowlandpenny241155 at gmail.com
Fri Oct 2 19:26:46 UTC 2015
On 02/10/15 20:09, Yosel Lazaro Vera Gonzalez wrote:
>
> ----- Mensaje original -----
> De: "Rowland Penny" <rowlandpenny241155 at gmail.com>
> Para: samba at lists.samba.org
> Enviados: Viernes, 2 de Octubre 2015 3:54:04
> Asunto: Re: [Samba] transfer fsmo role using ldap
>
> On 02/10/15 04:27, Yosel Lazaro Vera Gonzalez wrote:
>> !!!Regards
>>
>> Is it possible to transfer the FSMO roles using ldap?
>> For example I get the schema container object using ldap, then I modify the attribute fSMORoleOwner
>> I change the following value "CN=NTDS Settings,CN=SERVER1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=example,DC=com" by "CN=NTDS Settings,CN=SERVER2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=example,DC=com"
>>
>> Is this operation enough to transfer the schema master role to server2?
>>
> Why do you want to use ldap?
> is there something wrong with using 'samba-tool fsmo transfer'
>
> Rowland
>
>
> !!!Regards
> There is no problem with samba-tool fsmo transfer
> I'm developing a mini app with a simple UI to transfer roles and I'm using ldap.
>
It is a bit more involved that what you think, have a look at the code
in fsmo.py (part of samba-tool), it might be easier to get your UI to
run samba-tool instead of ldap. You should also think about 'what if the
role will not transfer?' it really gets involved when it comes to
seizing roles, also you have to transfer the two dns roles differently
from the other 5 roles.
Rowland
More information about the samba
mailing list