[K12OSN] LDAP rebuild question

dahopkins at comcast.net dahopkins at comcast.net
Wed Sep 20 15:33:25 UTC 2006 

Thanks, I can try that.  I am also considering just copying all of /etc/samba on the old system to /etc/samba on the new, delete the entire ldap database, import the old, restart ldap and smb and see what happens.  Worst that can happen is it doesn't work.

Sincerely,
Dave Hopkins

 -------------- Original message ----------------------
From: Brian Chivers <brian at portsmouth-college.ac.uk>
> dahopkins at comcast.net wrote:
> > Last night I used the ldap script to create a new ldap authentication server 
> (need to move authentication from one system to another).  But ... when I tried 
> to import the old ldif, I got errors/conflicts with the Samba groups created by 
> the script and the existing groups from the current authentication server. (SID 
> issues?)
> > 
> > Now, I could just delete the entire ldap database on the new server and import 
> the old one.  My question though is how do I keep the samba information the same 
> e.g. the new machine which is intended to become the pdc should look exactly 
> like the old system to all windows boxes.  As it is right now, if I activate 
> samba on the new system and then log onto the windows systems the users get new 
> profiles created because the SID is different.  Should probably post this to the 
> samba list, but since I used the ldap script, was hoping this had been addressed 
> already.
> > 
> > Should I bring up the new authentication server using the bdc option, then 
> edit the smb.conf to make it the pdc instead?  Would that fix it?  Or is there 
> some samba-related file I can just copy over?
> > 
> > Sincerely,
> > Dave Hopkins
> > 
> > _______________________________________________
> > K12OSN mailing list
> > K12OSN at redhat.com
> > https://www.redhat.com/mailman/listinfo/k12osn
> > For more info see <http://www.k12os.org>
> > 
> 
> You could try setting the SID on the new server the same as the old server & 
> just importing your old 
> system.
> 
> I can't remember how to do this but it's something like net getlocalsid on the 
> old box then net 
> setlocalsid on the new box.
> 
> I expect someone else will correct me if I'm wrong.
> 
> Brian
> 
> ------------------------------------------------------------------------
>     The views expressed here are my own and not necessarily 
>                 the views of Portsmouth College    
> 
> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>

More information about the K12OSN mailing list