[Samba] AD RODC not being used because of missing DNS entries?
Rowland Penny
rpenny at samba.org
Thu Nov 8 08:36:30 UTC 2018
On Wed, 7 Nov 2018 23:22:09 +0100 (CET)
tomict via samba <samba at lists.samba.org> wrote:
> Hi,
>
> Sorry for replying too late, i did not notice until now that there
> was a follow up to the mail conversation.
>
> Yes, I had the same issue of two dns records on the RODC trying to
> update, apparently with success, but not really. I resolved this,
> like you, by manually updating the records on the RWDC (which then
> got replicated to the RODC). Of course the RODC controller cannot
> write new records other than by replication because it is literally
> "read only". Maybe there is something wrong with the RODC join
> process because I would expect the dns records to be created at that
> time.
>
When you provision a new domain, all the dns records for the DC are
created, but when you join another DC, only a few records for the new
DC are created. The missing records are created by samba_dnsupdate,
this works on a RWDC, but, as you cannot write to a RODC, it seems
to fail.
Rowland
More information about the samba
mailing list