[K12OSN] LDAP rebuild question
Brian Chivers
brian at portsmouth-college.ac.uk
Wed Sep 20 15:29:42 UTC 2006
dahopkins at comcast.net wrote:
> Last night I used the ldap script to create a new ldap authentication server (need to move authentication from one system to another). But ... when I tried to import the old ldif, I got errors/conflicts with the Samba groups created by the script and the existing groups from the current authentication server. (SID issues?)
>
> Now, I could just delete the entire ldap database on the new server and import the old one. My question though is how do I keep the samba information the same e.g. the new machine which is intended to become the pdc should look exactly like the old system to all windows boxes. As it is right now, if I activate samba on the new system and then log onto the windows systems the users get new profiles created because the SID is different. Should probably post this to the samba list, but since I used the ldap script, was hoping this had been addressed already.
>
> Should I bring up the new authentication server using the bdc option, then edit the smb.conf to make it the pdc instead? Would that fix it? Or is there some samba-related file I can just copy over?
>
> Sincerely,
> Dave Hopkins
>
> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>
>
You could try setting the SID on the new server the same as the old server & just importing your old
system.
I can't remember how to do this but it's something like net getlocalsid on the old box then net
setlocalsid on the new box.
I expect someone else will correct me if I'm wrong.
Brian
------------------------------------------------------------------------
The views expressed here are my own and not necessarily
the views of Portsmouth College
More information about the K12OSN
mailing list