[Samba] Already deleted DN on 2. DC

[admins aixtema]

Hello,
i have no idea anymore how to fix it :(

I have an obsolete entry in my DB:

DC1: No errors
samba-tool dbcheck --cross-ncs --fix
Checking 4925 objects
Checked 4925 objects (0 errors)


DC2: Error

samba-tool dbcheck --cross-ncs --fix --yes
Checking 4925 objects
ERROR: incorrect DN SID component for member in object CN=Domain 
Admins,CN=Users,DC=DOMAIN,DC=TLD - 
<GUID=dc047012-ceb8-43b8-923d-039580736d6c>;<RMD_ADDTIME=131605004950000000>;<RMD_CHANGETIME=131629231830000000>;<RMD_FLAGS=1>;<RMD_INVOCID=439b07ea-caf2-4882-9e97-7651c8306774>;<RMD_LOCAL_USN=20032>;<RMD_ORIGINATING_USN=20032>;<RMD_VERSION=3>;CN=USER 
NAME,CN=Users,DC=DOMAIN,DC=TLD
Change DN to 
<GUID=dc047012-ceb8-43b8-923d-039580736d6c>;<SID=S-1-5-21-638125944-616376377-443991942-1296>;CN=USER 
NAME,CN=Users,DC=DOMAIN,DC=TLD? [y/N/all/none] y
Failed to fix incorrect DN SID on attribute member : (53, 'Attribute 
member already deleted for target GUID 
dc047012-ceb8-43b8-923d-039580736d6c')
Checked 4925 objects (1 errors)


the entry is only at my second DC and all i tryed dont work

ldbedit -e vim -H /var/lib/samba/private/sam.ldb 
'(samaccountname=Domain Admins)' shows only my 6 member entrys

samba-tool drs replicate DC2 DC1 dc=domain,dc=tld --full-sync = no fix


does anyone have an idea how i can delete that non existing entry?



René



Mit freundlichen Grüßen,
René Fuchs


-- 
***********************************************
aixtema GmbH
René Fuchs
Philipsstr. 8, 52068 Aachen, Germany
Tel.: +49 241 70515-1323, Fax: +49 241 70515-15
mailto:r.fuchs at aixtema.de

WWW: http://www.aixtema.de
Shop: http://shop.aixtema.de

Geschaeftsfuehrer: Oliver Rossbruch
HRB 8201, Amtsgericht Aachen
USt.-Id-Nr. DE 210 906 744
St.-Nr. 201/5942/3737, Finanzamt Aachen Stadt
***********************************************