[Samba] Pc's not added (shown) to AD after remove and re-add.

Rowland penny rpenny at samba.org
Mon Feb 24 13:19:17 UTC 2020

On 24/02/2020 12:44, L.P.H. van Belle via samba wrote:
> Hai,
> After some "strange" pc problems with pc-domain trust i did some digging.
> Im pretty sure this is a samba bug, if someone can verify this.
Possibly, but then again it might be a Windows bug.
> My steps.
> - Setup a win10 pc, static ip.
> - Join the domain.
> And its shown in AD and DNS.
> Turn of the pc.
> but, now next, set a new pc, use the same name but a different IP.
> join the domain.
> login and turn the pc offf
> Back to pc1. turn it on, your unable to login, the pc compains about its domain trust.
> Login as admin, remove the pc from the domain.
If there is a bug, this is where it is. You shouldn't be able to join 
two machines with the same name (even if they do have different IPs).
> So, i wanted to clean up AD.
> samba-tool domain tombstones expunge
> Removed 0 objects and 0 links successfully
> ? 0 removed... and im pretty sure i remove about 5 pc's from the domain today.

Try adding '--tombstone-lifetime=1' to the expunge command.


More information about the samba mailing list