[Samba] Problems with sysvolcheck

[Rowland Penny]

On Tue, 16 May 2017 16:31:37 -0500
Santiago Londoño Mejía <santiago.londono at pragma.com.co> wrote:

> Hello,
> Thanks for your answer
> I have tried to alter the default policies but the error persists
> ./samba-tool ntacl sysvolreset
> open: error=2 (No such file or directory)
> ERROR(runtime): uncaught exception - (-1073741823, 'Undetermined
> error')  File
> "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/__init__.py",
> line 175, in _run return self.run(*args, **kwargs)  File
> "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/ntacl.py",
> l
> ine 239, in run    lp, use_ntvfs=use_ntvfs)  File
> "/usr/local/samba/lib64/python2.7/site-packages/samba/provision/__init__.py",
> line 1618, in setsysvolacl    set_gpos_acl(sysvol, dnsdomain,
> domainsid, domaindn, samdb, lp, use_ntvfs, passdb=s4_passdb)  File
> "/usr/local/samba/lib64/python2.7/site-packages/samba/provision/__init__.py",
> line 1523, in set_gpos_acl
>     passdb=passdb)  File
> "/usr/local/samba/lib64/python2.7/site-packages/samba/provision/__init__.
> py", line 1486, in set_dir_acl
>     setntacl(lp, path, acl, domsid, use_ntvfs=use_ntvfs,
> skip_invalid_chown=True, passdb=passdb, service=service)
>   File
> "/usr/local/samba/lib64/python2.7/site-packages/samba/ntacls.py",
> line 162, in setntacl smbd.set_nt_acl(file, security.SECINFO_OWNER |
> security.SECINFO_GROUP | security.SECINFO_DACL |
> security.SECINFO_SACL, sd, service=service)
> 

Is this a second DC ?
If so then sysvol isn't fully created during the join, you will need to
copy the missing directories from the first DC, you will also need to
sync idmap.ldb between the DCS.

You do not add to the default policies, you must create new GPOs

Rowland