[Samba] questions regarding the Demoting an Offline Domain Controller procedure

Jean-Louis Biasini jl.biasini at laposte.net
Fri Jul 8 12:25:25 UTC 2022


hello list,

sorry for the bump, does anybody has any information on this one?

thanks

jl

Le 06/07/2022 à 14:15, Jean-Louis Biasini via samba a écrit :
> hi all,
>
> I have questions regarding a DC that I had to demote following the 
> Demoting an Offline Domain Controller procedure from here 
> https://wiki.samba.org/index.php/Demoting_a_Samba_AD_DC.
>
> 1. The procedure went well and no other problems occured, but since 
> then I have the following popping up in the log of all the remaining 
> DCs at restart:
>
> ../../source4/dsdb/kcc/scavenge_dns_records.c:491(dns_delete_tombstones)
> dns_delete_tombstones: A tombstoned dnsNode has non-tombstoned 
> records, which should not happen.
>
> How can I find and delete those remaining record? I don’t see anything 
> related to the demoted DC with rsat DNS tool nor with:
>
> ldbsearch -H /usr/local/samba/private/sam.ldb '(invocationId=*)' 
> --cross-ncs objectguid
>
> 2. the procedure states that I shouldn’t reconnect et demoted offline 
> dc, does this apply only to that specific machine? Can I declare a new 
> dc with the same name and/or ip and/or mac address (VM) or should this 
> also be avoided?
>
> samba is Version 4.15.8 on Centos7 with bind dlz as dns backend
>
>
> many thanks
>
> Jean-Louis



More information about the samba mailing list