[Samba] Problem achieving manual synchronisation of idmap.ldb and the associated User and Group ID mappings between two Samba 4 AD DCs

[L.P.H. van Belle]

Go here : https://wiki.samba.org/index.php/SysVol_replication_(DFS-R) 
You choose what preffered for you. 
And setup the sync. 

A rights check can be done with this script: 
wget https://raw.githubusercontent.com/thctlo/samba4/master/samba-check-set-sysvol.sh 
bash samba-check-set-sysvol.sh 
cat default-rights-sysvol.acl 


Greetz, 

Louis


> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces at lists.samba.org] Namens 
> Stephen via samba
> Verzonden: dinsdag 26 maart 2019 13:34
> Aan: samba at lists.samba.org
> Onderwerp: Re: [Samba] Problem achieving manual 
> synchronisation of idmap.ldb and the associated User and 
> Group ID mappings between two Samba 4 AD DCs
> 
> Roland, Jonathon, what permissions set would you recommend 
> for use when 
> syncing SysVol?
> 
> I have only found a single tutorial 
> (https://www.tecmint.com/samba4-ad-dc-sysvol-replication/) that even 
> mentions what permissions should be used when replicating 
> SysVol. , and 
> that suggests using 775 permission set during replication ie:
> 
> rsync --dry-run -XAavz --chmod=775 --delete-after  --progress 
> --stats  /var/lib/samba/sysvol/ root at ad2:/var/lib/samba/sysvol/
> 
> Perhaps its just me but that seems an excessively promiscuous?
> 
> Thanks
> Stephen Ellwod
> 
> -- 
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
> 
>