[Samba] No good way to migrate 4.1 on Server A to 4.7.6 on New Server B

Rowland Penny rpenny at samba.org
Mon Nov 26 09:07:26 UTC 2018


On Sun, 25 Nov 2018 18:04:05 -0500
Glenn Bergeron <glenn at gbitservices.ca> wrote:

> Hi Rowland,
> 
> The old server is Debian 3.2.101-1 running a compiled-from-source
> Samba 4.1.0. The new server I'm trying to migrate to is Ubuntu Server
> 18.04LTS, running a package-installed (apt) Samba 4.7.7.
> 
> Old server name: isofs 10.4.0.2
> New server name: isofs2 10.4.0.3
> 
> Domain: ISO.PRIVATE
> 
> smb.conf:
> 
> [global]
> 	netbios name = ISOFS2
> 	realm = ISO.PRIVATE
> 	server role = active directory domain controller
> 	workgroup = ISO
> 	ldap server require strong auth = no #Was required for FSMO
> transfer from old server dns forwarder = 1.1.1.1
> 	vfs objects = acl_xattr
> 	map acl inherit = yes
> 	hide dot files = yes
> 	store dos attributes = yes

Oh dear, you have confused Samba, 'acl_xattr etc' is built into a DC

Can I suggest you change the [global] part to just this:

[global]
	netbios name = ISOFS2
	realm = ISO.PRIVATE
	server role = active directory domain controller
	workgroup = ISO
	ldap server require strong auth = no #Was required for FSMO transfer from old server
	dns forwarder = 1.1.1.1
	idmap_ldb:use rfc2307 = yes


> Where it's at now:
> 
> - FSMO transferred to new server. I used Migrate, not Seize, as I
> hope I can roll back to the original server if I can't get things
> working on the new server by Monday morning.
> - GPO manually rsync'd to new server. 
> - "samba-tool ntacl sysvolreset" then run on new server, as well as
> "samba-tool dbcheck --cross-ncs --reset-well-known-acls --fix --yes".

Do you sync idmap.ldb as well ?

Rowland



More information about the samba mailing list