[Samba] Sysvol Replication workaround seems not work
Rowland Penny
rpenny at samba.org
Fri Jul 30 09:45:41 UTC 2021
On Fri, 2021-07-30 at 11:26 +0200, Thomas Kempf via samba wrote:
>
> >
> > > >
> Sorry, i fear, i was not clear in what i meant.
> As far as i understood, there will be no change in idmap.ldb, when
> i'm
> not making any user or group changes, so no need to resync idmap.ldb
> each time when i change ACL on a GPO.
Yes
>
> But if i change only Delegation on one Policy - which leads AFAIK to
> changed ACL on FSMO-DCs sysvol, shouldn't these ACL-Changes be synced
> to
> the other DC automatically by Unison ?
If the ACL on disk is changed, then it should be synced, but if the
changes are only in sam.ldb, then replication should sync the changes.
I do not use the unison method, so cannot really comment on it, have
you tried one of the other methods ?
Rowland
More information about the samba
mailing list