On Sat, 2003-12-27 at 15:51, Beast wrote: > Saturday, December 27, 2003, 5:41:37 AM, Andrew wrote: > > > On Sat, 2003-12-27 at 07:10, Information Technology wrote: > >> > >> My goal is to rebuild my PDC as I mentioned earlier. I stated in another > >> thread my plan was to create a 3.0.1 BDC; tranfer the accounts; transfer the > >> shares; then, move the user and system accounts into LDAP. Once the PDC is > >> rebuild and I need to transfer control back, It should be simple to move the > >> LDAP first, point the new Samba to the new primary LDAP, and demote the > >> temporary PDC back down to BDC. > > > And to make it a real BDC, setup an LDAP slave. > > If I put PDC in slave ldap, is this means that it will update the > slave (because samaba will bind as ldap-root which has authority of > updating this replica)? > No way to prevent samba to using other ldap account to update the > directory?
You should never list the Manager account as the replicator. Instead, create a new account, and use it only for the replication. That way, everybody who is not the replicator account will be forced to talk to the master. Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net
signature.asc
Description: This is a digitally signed message part
-- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
