[Samba] Does anyone know how to completely remove the Computer SID of a Demoted DC?
Rowland Penny
rpenny at samba.org
Thu Jan 5 13:10:49 UTC 2023
On 05/01/2023 12:19, Zombie Ryushu via samba wrote:
> On 1/5/23 06:22, Rowland Penny via samba wrote:
>>
>>
>> On 05/01/2023 10:20, Zombie Ryushu via samba wrote:
>>> Does anyone know how to completely remove the Computer SID of a
>>> Demoted DC? As in, another DC has taken it's place, the system is
>>> down and offline, but if it rejoins, it will not get the SID entry it
>>> had before?
>>>
>>
>>
>> Samba-tool domain demote --remove-other-dead-server=DEAD_SERVER
>>
>> Rowland
>>
> tdb> open /var/lib/samba/private/secrets.tdb
> tdb> list
> hash=31
> rec: hash=31 offset=0x0000ccc8 next=0x00000000 rec_len=116 key_len=20
> data_len=68 full_hash=0x6344070e magic=0x26011999
> hash=40
> rec: hash=40 offset=0x0000cc48 next=0x00000000 rec_len=104 key_len=12
> data_len=68 full_hash=0x2a4c7c2e magic=0x26011999
> hash=81
> rec: hash=81 offset=0x0000cb48 next=0x00000000 rec_len=48 key_len=28
> data_len=5 full_hash=0x04693e9d magic=0x26011999
> hash=91
> rec: hash=91 offset=0x0000cb90 next=0x00000000 rec_len=56 key_len=24
> data_len=16 full_hash=0xeeca574e magic=0x26011999
> hash=102
> rec: hash=102 offset=0x0000cdfc next=0x00000000 rec_len=492 key_len=33
> data_len=355 full_hash=0xde81724e magic=0x26011999
> hash=117
> rec: hash=117 offset=0x0000cbe0 next=0x0000cda8 rec_len=80 key_len=35
> data_len=25 full_hash=0xab4cc893 magic=0x26011999
> rec: hash=117 offset=0x0000cda8 next=0x00000000 rec_len=60 key_len=41
> data_len=4 full_hash=0xd7d62837 magic=0x26011999
> hash=126
> rec: hash=126 offset=0x0000cd54 next=0x00000000 rec_len=60 key_len=41
> data_len=4 full_hash=0x4ff35197 magic=0x26011999
> freelist:
> hash=-1
> rec: hash=-1 offset=0x000002b8 next=0x00000000 rec_len=51320 key_len=0
> data_len=0 full_hash=0x00000000 magic=0xd9fee666
> tdb> quit
>
> One of these entries appears to be a duplicate. Is it the case that
> hash=117 is a duplicate?
What has any of that got to do with your original question ??
Why are you even looking in secrets.ldb ??
Why can you not open your own thread for each question ??
I knew it was a mistake answering you.
Rowland
More information about the samba
mailing list