We should replicate the container CN=IP Security,CN=System. Otherwise the default MS GP IP security are not syncronized between UCS and Samba 4. It's currently ignored in the global_ignore_subtree list. Patch: diff --git services/univention-s4-connector/conffiles/etc/univention/s4connector/s4/mapping.py services/univention-s4-connector/conffiles/etc/univention/s4connector/s4/mapping.py index ff2d20f244..8c1c890315 100644 --- services/univention-s4-connector/conffiles/etc/univention/s4connector/s4/mapping.py +++ services/univention-s4-connector/conffiles/etc/univention/s4connector/s4/mapping.py @@ -64,7 +64,6 @@ global_ignore_subtree = [ 'CN=Server,CN=System,@%@connector/s4/ldap/base@%@', 'CN=ComPartitionSets,CN=System,@%@connector/s4/ldap/base@%@', 'CN=ComPartitions,CN=System,@%@connector/s4/ldap/base@%@', - 'CN=IP Security,CN=System,@%@connector/s4/ldap/base@%@', 'CN=DFSR-GlobalSettings,CN=System,@%@connector/s4/ldap/base@%@', 'CN=DomainUpdates,CN=System,@%@connector/s4/ldap/base@%@', 'CN=Password Settings Container,CN=System,@%@connector/s4/ldap/base@%@', +++ This bug was initially created as a clone of Bug #49838 +++
This issue has been filed against UCS 4.4. UCS 4.4 is out of general maintenance and components may have vastly changed in later releases. Thus, this issue is now being closed. If this issue still occurs in newer versions, please use "Clone this bug" or reopen this issue. In this case please provide detailed information on how this issue is affecting you.