[Samba] Does anyone know how to completely remove the Computer SID of a Demoted DC?
Zombie Ryushu
zombie_ryushu at yahoo.com
Thu Jan 5 12:19:42 UTC 2023
On 1/5/23 06:22, Rowland Penny via samba wrote:
>
>
> On 05/01/2023 10:20, Zombie Ryushu via samba wrote:
>> Does anyone know how to completely remove the Computer SID of a
>> Demoted DC? As in, another DC has taken it's place, the system is
>> down and offline, but if it rejoins, it will not get the SID entry it
>> had before?
>>
>
>
> Samba-tool domain demote --remove-other-dead-server=DEAD_SERVER
>
> Rowland
>
tdb> open /var/lib/samba/private/secrets.tdb
tdb> list
hash=31
rec: hash=31 offset=0x0000ccc8 next=0x00000000 rec_len=116 key_len=20
data_len=68 full_hash=0x6344070e magic=0x26011999
hash=40
rec: hash=40 offset=0x0000cc48 next=0x00000000 rec_len=104 key_len=12
data_len=68 full_hash=0x2a4c7c2e magic=0x26011999
hash=81
rec: hash=81 offset=0x0000cb48 next=0x00000000 rec_len=48 key_len=28
data_len=5 full_hash=0x04693e9d magic=0x26011999
hash=91
rec: hash=91 offset=0x0000cb90 next=0x00000000 rec_len=56 key_len=24
data_len=16 full_hash=0xeeca574e magic=0x26011999
hash=102
rec: hash=102 offset=0x0000cdfc next=0x00000000 rec_len=492 key_len=33
data_len=355 full_hash=0xde81724e magic=0x26011999
hash=117
rec: hash=117 offset=0x0000cbe0 next=0x0000cda8 rec_len=80 key_len=35
data_len=25 full_hash=0xab4cc893 magic=0x26011999
rec: hash=117 offset=0x0000cda8 next=0x00000000 rec_len=60 key_len=41
data_len=4 full_hash=0xd7d62837 magic=0x26011999
hash=126
rec: hash=126 offset=0x0000cd54 next=0x00000000 rec_len=60 key_len=41
data_len=4 full_hash=0x4ff35197 magic=0x26011999
freelist:
hash=-1
rec: hash=-1 offset=0x000002b8 next=0x00000000 rec_len=51320 key_len=0
data_len=0 full_hash=0x00000000 magic=0xd9fee666
tdb> quit
One of these entries appears to be a duplicate. Is it the case that
hash=117 is a duplicate?
More information about the samba
mailing list