[Samba] [samba] replication error
matthieu le roy
leroy.matthieu50 at gmail.com
Sun Mar 14 17:18:32 UTC 2021
Hello,
For the diagnosis I again launched the commands:
samba-tool dbcheck --cross-ncs --fix
and
samba-tool replicate ad04 ad03 CN=YELLOWSCAN,CN=INFO
but unlike before, the return of the command was good as well as that of
the replication:
samba-tool ldapcmp ldap://ad03 ldap://ad04 -v | grep -v ldap: | grep -v OK
| grep -v Comparing: | grep -ve ^$
* Comparing [DOMAIN] context...
* Objects to be compared: 547
* Result for [DOMAIN]: SUCCESS
* Comparing [CONFIGURATION] context...
* Objects to be compared: 1623
* Result for [CONFIGURATION]: SUCCESS
* Comparing [SCHEMA] context...
* Objects to be compared: 1550
* Result for [SCHEMA]: SUCCESS
* Comparing [DNSDOMAIN] context...
* Objects to be compared: 139
* Result for [DNSDOMAIN]: SUCCESS
* Comparing [DNSFOREST] context...
* Objects to be compared: 36
* Result for [DNSFOREST]: SUCCESS
I think I had done it 10 times before but now it's ok.
Le dim. 14 mars 2021 à 13:54, Yakov Revyakin <yrevyakin at gmail.com> a écrit :
> Can you write what you did to solve the difference?
>
> On Fri, 12 Mar 2021 at 10:47, matthieu le roy via samba <
> samba at lists.samba.org> wrote:
>
>> finnally it's ok,
>> thank you
>>
>> Le ven. 12 mars 2021 à 09:22, matthieu le roy <leroy.matthieu50 at gmail.com
>> >
>> a écrit :
>>
>> > Hello,
>> > After (too) many changes on my domain, I find myself in a situation
>> that I
>> > can’t get out of.
>> > I have 2 domain controllers called ad03 and ad04 but replication doesn’t
>> > work and their ldap differs like this :
>> >
>> > samba-tool ldapcmp ldap://ad03 ldap://ad04 -v
>> > ldb_wrap open of secrets.ldb
>> > resolve_lmhosts: Attempting lmhosts lookup for name ad03<0x20>
>> > GENSEC backend 'gssapi_spnego' registered
>> > GENSEC backend 'gssapi_krb5' registered
>> > GENSEC backend 'gssapi_krb5_sasl' registered
>> > GENSEC backend 'spnego' registered
>> > GENSEC backend 'schannel' registered
>> > GENSEC backend 'naclrpc_as_system' registered
>> > GENSEC backend 'sasl-EXTERNAL' registered
>> > GENSEC backend 'ntlmssp' registered
>> > GENSEC backend 'ntlmssp_resume_ccache' registered
>> > GENSEC backend 'http_basic' registered
>> > GENSEC backend 'http_ntlm' registered
>> > GENSEC backend 'http_negotiate' registered
>> > GENSEC backend 'krb5' registered
>> > GENSEC backend 'fake_gssapi_krb5' registered
>> > resolve_lmhosts: Attempting lmhosts lookup for name ad04<0x20>
>> > * Comparing [DOMAIN] context...
>> > * Objects to be compared: 554
>> > Difference in attribute values:
>> > servicePrincipalName =>
>> >
>> >
>> [b'E3514235-4B06-11D1-AB04-00C04FC2DCD2/ceddd4ea-a2fc-4070-bd37-0505d51c6c7c/
>> > domain.info', b'GC/ad04.domain.info/domain.info', b'HOST/AD04', b'HOST/
>> > ad04.domain.info']
>> >
>> >
>> [b'E3514235-4B06-11D1-AB04-00C04FC2DCD2/ceddd4ea-a2fc-4070-bd37-0505d51c6c7c/
>> > domain.info', b'GC/ad04.domain.info/domain.info', b'HOST/AD04', b'HOST/
>> > ad04.domain.info', b'HOST/ad04.domain.info/DOMAIN', b'HOST/
>> > ad04.domain.info/domain.info', b'RestrictedKrbHost/AD04',
>> > b'RestrictedKrbHost/ad04.domain.info', b'ldap/AD04', b'ldap/
>> > ad04.domain.info', b'ldap/ad04.domain.info/DomainDnsZones.domain.info',
>> > b'ldap/ad04.domain.info/ForestDnsZones.domain.info', b'ldap/
>> > ad04.domain.info/DOMAIN', b'ldap/ad04.domain.info/domain.info',
>> > b'ldap/ceddd4ea-a2fc-4070-bd37-0505d51c6c7c._msdcs.domain.info']
>> > FAILED
>> > * Result for [DOMAIN]: FAILURE
>> > SUMMARY
>> > ---------
>> > Attributes with different values:
>> > servicePrincipalName
>> > * Comparing [CONFIGURATION] context...
>> > * DN lists have different size: 1622 != 1623
>> > CN=87B79F9E-8A4F-4DF7-8A30-67F11FAD6AFD,CN=NTDS
>> >
>> SETTINGS,CN=AD04,CN=SERVERS,CN=DEFAULT-FIRST-SITE-NAME,CN=SITES,CN=CONFIGURATION,DC=DOMAIN,DC=INFO
>> > * Objects to be compared: 1622
>> > * Result for [CONFIGURATION]: FAILURE
>> > SUMMARY
>> > ---------
>> > * Comparing [SCHEMA] context...
>> > * Objects to be compared: 1550
>> > ERROR: Compare failed: -1
>> > * Result for [SCHEMA]: SUCCESS
>> > * Comparing [DNSDOMAIN] context...
>> > * Objects to be compared: 136
>> > * Result for [DNSDOMAIN]: SUCCESS
>> > * Comparing [DNSFOREST] context...
>> > * Objects to be compared: 36
>> > * Result for [DNSFOREST]: SUCCESS
>> > root at ad03:/#
>> >
>> > Can you help me?
>> >
>> > Matthias
>> >
>> --
>> To unsubscribe from this list go to the following URL and read the
>> instructions: https://lists.samba.org/mailman/options/samba
>>
>
More information about the samba
mailing list