[Samba] procedure to change DC password
Rowland Penny
rpenny at samba.org
Wed Apr 23 14:08:52 UTC 2025
On Wed, 23 Apr 2025 15:55:56 +0200
Kacper Wirski via samba <samba at lists.samba.org> wrote:
> Thank You,
>
> I already changed krbtgt, I meant computer account. Does changing
> domain controller password with this command require restart of samba
> service, won't it interrupt replication between controllers etc.? I
> have 3 dc's in my environment, that's why I'm asking.
>
> Regards,
>
> Kacper
>
> W dniu 23.04.2025 o 15:32, Rowland Penny via samba pisze:
> > On Wed, 23 Apr 2025 14:35:16 +0200
> > Kacper Wirski via samba<samba at lists.samba.org> wrote:
> >
> >> What is the best approach to change samba ad dc's own password?
> >> Windows machines change periodically, linux domain members can
> >> simply re-join domain, but when it comes to DC's I can't find any
> >> recommended steps? Is re-joining domain as domain controller viable
> >> and doesn't create issues?
> >>
> >> I'm using lastest samba on debian bookworm from packages, not just
> >> quite ready to update to the backports version, so it's still 4.17.
> >>
The thing you have got to understand is that an AD computer is just a
user with an extra objectclass (objectclass=computer), does a user have
to logout when they change their password ?
Rowland
More information about the samba
mailing list