[Samba] How to change samba4 domaine name
mathias dufresne
infractory at gmail.com
Mon Jul 4 08:31:44 UTC 2016
I believe trust relationship are working since 4.3.0. This feature is not
yet full developed but I believe Samba can do transitive bi-directional
trusts only.
This is the most open trust and so this kind of trust relationship could be
used to do what the MS doc says.
I'm actually renaming my domain, we did use ldbsearch + awk/sed to rename
everything, ldbadd to import everything.
I believe there is no way to extract passwords from Samba AD and that could
be a show stopper. Here we have user passwords stored elsewhere and we can
synchronize them back.
We chose that way to re-test and improve our deployment strategy.
What I didn't tried was to re-use domain SID for my new domain. Re-using it
is not an issue if no connection exist between the new and the old domain
and re-using domain SID could be helpful to avoid changing AD user profile
on Windows clients (if and only if we can set/force objectSid when
re-injecting users, which is not sure).
2016-07-03 14:08 GMT+02:00 Jules Houantonon <juleshoueto at gmail.com>:
> Hello all,
>
> Mine is Active Directory domain.
>
> I have already reinstall my server. It was fresh install. But of course I
> am still following this topic.
>
> Regards
> Le 3 juil. 2016 13:05, "Klaus Hartnegg" <hartnegg at uni-freiburg.de> a
> écrit :
>
> > On 20.06.2016 at 12:16 Jules Houantonon wrote:
> >
> >> please is it possible to change samba4 domaine name ?
> >> Did someone have a how to or can explain to acheive it ?
> >>
> >
> > If it is Active Directory, then the recommendation from Microsoft appears
> > to be: create a new domain, set up trust between them, use ADMT (Active
> > Directory Migration Tool) to transfer everything from old to new (in the
> > one and only correct order, taking into account all caveats, and after
> > training in a test environment), finally shut down the old domain.
> >
> > In samba this will probably fail on the step "set up trust", because that
> > is not(?) yet(?) fully(?) supported.
> >
> > If anybody knows a shortcut, I am very interested to hear it.
> >
> > --
> > To unsubscribe from this list go to the following URL and read the
> > instructions: https://lists.samba.org/mailman/options/samba
> >
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
>
More information about the samba
mailing list