[Samba] Demoting an offline DC

Andrew Bartlett abartlet at samba.org
Wed Jul 12 12:20:41 UTC 2017

On Wed, 2017-07-12 at 15:07 +0300, Mitocariu Emilian via samba wrote:
> Hi,
> I have an offline DC that i want to demote and i read here
> https://wiki.samba.org/index.php/Demoting_a_Samba_AD_DC#Demoting_an_Offline_Domain_Controller
> that my samba version has to be at least 4.4, but all my DCs have samba
> 4.3.11. Is it enough if just one of the DCs has samba 4.4+ or does all my
> DCs need at least samba 4.4 for demoting an offline DC?
> Also, is there a way of demoting on offline DC with samba older than 4.4?
> Maybe if i create a DC with the same name as the one i want to remove, join
> the domain and then do a proper demoting?

All the --remove-other-dead-server logic is in the samba-tool command,
so just run that command from a modern Samba, pointing at a live DC
with -H ldap://gooddc.example.com

Remember to authenticate, eg with -U. 

I hope this helps,

Andrew Bartlett

Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

More information about the samba mailing list