[Samba] problem with samba-tool fsmo transfer

Rowland Penny rpenny at samba.org
Tue Jul 25 15:00:48 UTC 2017


On Tue, 25 Jul 2017 11:45:23 -0300
Guido Lorenzutti via samba <samba at lists.samba.org> wrote:


> ERROR: Failed to delete role 'domaindns': LDAP error 50
> LDAP_INSUFFICIENT_ACCESS _RIGHTS -  

Yes, you need to supply an admin user & password to transfer the DNS
FSMO roles.

> Password for
> [TRUSTadministrador]:
> ERROR: Failed to add role 'domaindns': LDAP error
> 53 LDAP_UNWILLING_TO_PERFORM -  
> 
> DomainDnsZonesMasterRole
> owner: CN=NTDS Settings,CN=SERVERIBM,CN=Servers,CN=Nombre-pred
> eterminado-primer-sitio,CN=Sites,CN=Configuration,DC=Trust,DC=local
> ForestDnsZonesMasterRole
> owner: CN=NTDS Settings,CN=SERVERIBM,CN=Servers,CN=Nombre-pred
> eterminado-primer-sitio,CN=Sites,CN=Configuration,DC=Trust,DC=local
> 

Have you checked that the above objects exist in AD ?

> Did
> I skip something?

Not that I can see, have you tried seizing the two roles ?

Rowland



More information about the samba mailing list