[Samba] demoted AD remains in samba-tool drs showrepl
Rowland penny
rpenny at samba.org
Wed Apr 29 09:01:47 UTC 2020
On 29/04/2020 09:21, Benedikt Kaleß via samba wrote:
> Dear list,
> in this corona crisis a delivery of a AD to a location abroad takes
> longer than I expected. I demoted the AD which is in delivery with
>
> samba-tool domain demote --remove-other-dead-server=ADDC3
>
> If I know trigger a
>
> samba-tool drs showrepl
>
> I still see him in the list:
>
> CN=Configuration,DC=example,DC=com
> NTDS DN: CN=NTDS
> Settings\0ADEL:490b60eb-3616-4f02-87c2-32b6653bfa22,CN=ADDC3\0ADEL:d424f125-bca9-4d37-907b-4b83b5558197,CN=Servers,CN=location,CN=Sites,CN=Configuration,DC=example,DC=cm
That is a deleted object, so you can wait for the tombstone lifetime
(defaults to 180 days) to expire and it will then be totally removed.
You could run: samba-tool domain tombstones expunge --tombstone-lifetime=1
This will delete ALL tombstoned objects over one day old.
Rowland
More information about the samba
mailing list