Web lists-archives.com

Re: [Samba] SRV records.




I'm sure the Windows admins have set up the "Sites" as required... but
when trying to resolve issues with logon, the Windows admins are
assuming that Samba doesn't support "sites" and blaming that for the
issue... so, I'm hoping someone will tell me how the client determines
the correct site, and the AD controllers in that site, and ultimately if
Samba/Winbind should support it.  Obviously also anything we might be
doing which would cause it not to work.

James


On 18/05/2019 17:03, Rowland penny via samba wrote:
> On 18/05/2019 16:35, A. James Lewis via samba wrote:
>> I have control only over the Winbind client, not over the AD
>> server... so  I need to ask, is "sites" something set up on the AD
>> side?... and since you suggest that DNS impacts this, are you saying
>> that the "sites" parameter is encoded in the DNS values?... Do i need
>> to ensure that the host is querying an AD DNS directly, or will it
>> still work if the DNS is relayed via another local DNS server?
>>
> If you are going to use 'sites', you are going to need control over
> the AD DC to create a new site :-(
>
> Basically a site would contain one DC (at least) and various clients,
> these clients would use the DC in the site for authentication etc,
> unless the DC goes down, at which point the clients would use any DC
> in the domain. Sites are usually used for locations that are in
> separate places, this can be different buildings or countries.
>
> Domain clients use dns to locate DC's and will try to use the most
> relevant one, but this may not be the one you want it to use. By
> default, all domain members & DC's are in the same 'site', so a client
> can & will use any DC it finds.
>
> Sounds like you need to talk to your Windows sysadmin, they will know
> and understand the above, if they don't, then it is time for a new
> Windows sysadmin ;-)
>
> Rowland
>
>

Attachment: signature.asc
Description: OpenPGP digital signature

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba