[Samba] Change IP to DC
Rowland Penny
rpenny at samba.org
Tue Feb 18 10:28:52 UTC 2025
On Tue, 18 Feb 2025 11:19:05 +0100 (CET)
Fabrizio Rompani via samba <samba at lists.samba.org> wrote:
> hi .
> a DC server has been physically moved to another site and network,
> without notify me!
>
> So now I have the new DC with different ip address.
> This DC is part of multi DC Domain Enviroment.
>
> I tyried to follows this instruction :
> https://wiki.samba.org/index.php/Changing_the_IP_Address_of_a_Samba_AD_DC
>
> It can ping the other DC's :
> root at exme-dc:~# ping dc1.wdc.DOMAIN.it
> PING dc1.wdc.DOMAIN.it (172.32.1.6) 56(84) bytes of data.
> 64 bytes from 172.32.1.6 (172.32.1.6): icmp_seq=1 ttl=62 time=23.0 ms
> 64 bytes from 172.32.1.6 (172.32.1.6): icmp_seq=2 ttl=62 time=22.6 ms
> ^C
>
> but when trying to demote I get ( expected ) error:
>
> root at exme-dc:~# samba-tool domain demote -U administrator
> Using dc1.wdc.DOMAIN.it as partner server for the demotion
> Password for [WDC\administrator]:
> Deactivating inbound replication
> Asking partner server dc1.wdc.DOMAIN.it to synchronize from us
> Error while replicating out last local changes from
> 'CN=Schema,CN=Configuration,DC=wdc,DC=DOMAIN,DC=it' for demotion,
> re-enabling inbound replication ERROR(<class 'samba.NTSTATUSError'>):
> Error while sending a DsReplicaSync for partition
> 'CN=Schema,CN=Configuration,DC=wdc,DC=DOMAIN,DC=it' - (3221225653,
> '{Device Timeout} The specified I/O operation on %hs was not
> completed before the time-out period expired.') root at exme-dc:~#
>
> Any suggestion how to workaround this situation?
> thank's
> rf
>
Shutdown the DC.
Forcibly demote the DC from the domain with:
samba-tool domain demote --remove-other-dead-server=exme-dc
Once the DC is demoted, ensure it is never started again.
I would also suggest that you give your DCs fixed IPs, so it never
happens again.
Rowland
More information about the samba
mailing list