[Samba] Bind9 doesn't updated - TSIG error with server: tsig verify failure
Rowland penny
rpenny at samba.org
Tue Aug 13 20:43:53 UTC 2019
On 13/08/2019 21:28, Igor Sousa wrote:
> I've found divergences when I've compared the dns entries on 'king'
> and 'samba4' servers ('samba4' has the fsmo roles on 'SMB' domain).
> There are some 'samba4bkp' entries on 'king' and theses same entries
> there aren't on 'samba4'. I've understood that I've could to demoting
> 'samba4bkp' using samba-tool, but master DC 'samba4's version is 4.1.6
> and this options there isn't on this version. Is possible to force
> sync between master DC 'samba4' and the other DCs (as 'king')?
>
> --
If I remember correctly, 'king' is running 4.10.x, so transfer or seize
the fsmo roles to this. now forcibly demote 'samba4bkp' from 'king'. Now
add another DC using an up to date Samba version, then demote 'samba4'.
At this point, you should have two current Samba AD DCs, so make a note
somewhere saying 'I must update Samba regularly' ;-)
Rowland
More information about the samba
mailing list