Univention Bugzilla – Full Text Bug Listing |
Summary: | s4 connector transforms dc slave into windows domaincontroller during 96univention-samba4.inst on slave after ad takeover from ad member mode | ||
---|---|---|---|
Product: | UCS | Reporter: | Felix Botner <botner> |
Component: | S4 Connector | Assignee: | Stefan Gohmann <gohmann> |
Status: | CLOSED FIXED | QA Contact: | Felix Botner <botner> |
Severity: | normal | ||
Priority: | P5 | CC: | best, gohmann, requate, walkenhorst |
Version: | UCS 3.2 | ||
Target Milestone: | UCS 3.2-3-errata | ||
Hardware: | Other | ||
OS: | Linux | ||
What kind of report is it?: | --- | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | |||
Attachments: | connector-s4.log |
Description
Felix Botner
2014-08-04 19:07:16 CEST
Created attachment 6047 [details]
connector-s4.log
a "net ads leave -U Administrator%Univention.99" before the univention-join on the slave (after ad takeover) seems to help, but the object is deleted in samba4 and UCS. univention-join univention-install univention-samba4 univention-run-join-scripts works now *** Bug 35559 has been marked as a duplicate of this bug. *** * delete_in_ucs: added a special handling for windows computer. If the computer is a normal member in AD and a DC in OpenLDAP, the computer will be removed and re-added if Samba 4 will be installed on the DC slave. Without this special check the object will be removed by the connector (Bug #35563) UCS 3.2-3: r53367 UCS 4.0-0: r53368 YAML: r53369 + r53371 OK - if a "windowscomputer" is a DC in UCS the s4-connector no longer deletes the object sync to ucs: [ dc] [ modify] cn=slave,cn=dc,cn=computers,dc=w2k8r2en,dc=test sync to ucs: [windowscomputer] [ delete] cn=slave,cn=dc,cn=computers,dc=w2k8r2en,dc=test The windows computer cn=slave,cn=dc,cn=computers,dc=w2k8r2en,dc=test is a Domain Controller in OpenLDAP. The deletion will be skipped. sync to ucs: [ dc] [ modify] cn=slave,cn=dc,cn=computers,dc=w2k8r2en,dc=test OK - other computer object are still deleted sync to ucs: [windowscomputer] [ delete] cn=ubuntu,dc=w2k8r2en,dc=test sync from ucs: [windowscomputer] [ delete] cn=ubuntu,dc=w2k8r2en,dc=test sync to ucs: [windowscomputer] [ delete] cn=windows,dc=w2k8r2en,dc=test sync from ucs: [windowscomputer] [ delete] cn=windows,dc=w2k8r2en,dc=test sync to ucs: [windowscomputer] [ delete] cn=macos,dc=w2k8r2en,dc=test sync from ucs: [windowscomputer] [ delete] cn=macos,dc=w2k8r2en,dc=test sync to ucs: [windowscomputer] [ delete] cn=member,dc=w2k8r2en,dc=test sync from ucs: [windowscomputer] [ delete] cn=member,dc=w2k8r2en,dc=test OK - YAML OK - UCS 4.0 |