[Samba] question on password server =
L.P.H. van Belle
belle at bazuin.nl
Thu Jun 15 09:28:43 UTC 2017
Hai,
Added some extra comment..
> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces at lists.samba.org] Namens
> Rowland Penny via samba
> Verzonden: donderdag 15 juni 2017 11:06
> Aan: samba at lists.samba.org
> Onderwerp: Re: [Samba] question on password server =
>
> On Thu, 15 Jun 2017 10:14:45 +0200
> mj via samba <samba at lists.samba.org> wrote:
>
> > Nobody knows..?
> >
> > Or my question is unclear..?
> >
>
> OK, whilst it is recomended to use 'password server = *' you
> can use a list of servers instead. I personally do not see
> the point of setting it as you are proposing, surely it is
> just the same as using '*' ?
>
> I am also struggling to understand how different Samba DCs
> can have the same hostname, I can understand a DC having
> multiple interfaces and therefore multiple IPs. Of course
> this could be down to sanitising the output, but if this is
> the case, try and do this in a way that identifies individual
> machines:
>
> You posted:
>
> > root at pf:~# host -t A samba4.company.com samba.merit.unu.edu has
> > address 192.168.0.1 samba.merit.unu.edu has address 192.168.0.2
> > samba.merit.unu.edu has address 192.168.0.3 root at pf~# host -t A
> > samba4.company.com samba.merit.unu.edu has address 192.168.0.2
> > samba.merit.unu.edu has address 192.168.0.3 samba.merit.unu.edu has
> > address 192.168.0.1
>
> Perhaps it should have been:
>
> > root at pf:~# host -t A samba4.company.com dc1.merit.unu.edu
> has address
> > 192.168.0.1 dc2.merit.unu.edu has address 192.168.0.2
> > dc3.merit.unu.edu has address 192.168.0.3 root at pf~# host -t A
> > samba4.company.com dc2.merit.unu.edu has address 192.168.0.2
> > dc3.merit.unu.edu has address 192.168.0.3 dc1.merit.unu.edu has
> > address 192.168.0.1
What M-J wrote, is correct, he is quering the "internal.dnsdomain.tld"
Which resolve to ip, with PTR's to A, which is the DC hostname.
If this did not work, then you can not power down you AD DC, and keep everything running.
https://wiki.samba.org/index.php/Setting_up_Samba_as_an_Active_Directory_Domain_Controller#Verifying_DNS
Imo, wiki should mention if you have multiple DC's run the A record test also for the primary domain.
host -t A samdom.example.com.
>
> Also, I hope that the domain name 'samba4.domain.com' doesn't
> map to 'merit.uni.edu'
>
> If my reading of this is wrong, then please explain yourself better.
>
> If you really do want Samba to use a specific DC before all
> others, I would do something like this:
>
> password server = DC1, *
I think best is use : password server = *
( so no changes in smb.conf and keep the default )
>
> This way, it would try to use 'DC1' first and then, if this
> failed, it would fall back to finding the nearest/best DC as normal.
>
> Rowland
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
>
>
Greetz,
Louis
More information about the samba
mailing list