[Samba] Cannot authenticate via rodc

Rowland penny rpenny at samba.org
Fri Jan 15 09:36:01 UTC 2021

On 15/01/2021 00:56, Adam Xu via samba wrote:
> from your description, I think even a user is in the "Allowed RODC 
> Password Replication Group", RODC still can not cache the user's new 
> password automatically.
> Only when the user try to login into the domain member, The RODC will 
> cache the user's new password, So the RODC is not a good solution for 
> the network device as a ldap server. is that Right?

An RODC doesn't store credentials like an RWDC does and replication is 
only one way into the RODC. Try reading this:



More information about the samba mailing list