but as far as I know the Client searches via DNS for the services
"kerberos", "ldap", "gc" to connect and authenticate. How will find a
client the RODC if not via DNS? *Headscratching*

Am 07.08.2018 um 18:19 schrieb Rowland Penny via samba:
>> One more Question:
>> When I do a "host -t srv _ldap._tcp.example.net" I only see my
>> writeable DCs but not my RODC. 
> There is a good reason for that, RODC's do not get that address.

