OK, replication is DEFINITELY only working from PDC -> ADC and is NOT working from ADC -> PDC
I added a user on the ADC and left it there all night long. This morning, the PDC still had not received the new user. Then, again this morning, I added a user on the PDC and it showed up on the ADC in less than an hour.
This seems to contradict the line in the documentation: (
https://wiki.zentyal.org/wiki/En/3.5/Users,_Computers_and_File_Sharing#Joining_Zentyal_server_to_an_existing_domain)
"From now on, DNS, LDAP and Kerberos information will be synchronized
both ways." (Italics/bold mine)
So let's assume that this is a "bug" in version 3.5 of Zentyal. What is the command that I have to issue from the PDC to synchronize with the ADC? Would it be the same just issued from the PDC?
sudo net rpc share migrate files sysvol -k --destination=ADCserverName.companyname.local -S PDCserverName.companyname.local --acls -U "companyname\\AdminAccountName"
Or do I need to reverse the --destination and -S?
sudo net rpc share migrate files sysvol -k --destination=PDCserverName.companyname.local -S ADCserverName.companyname.local --acls -U "companyname\\AdminAccountName"
Or is it a different set of options considering it is coming from the PDC? From my understanding of modern AD, the concepts of PDC and ADC are not really valid as both DCs are considered equal. So would it be the same command with --destination and -S reversed?
What about the AdminAccountName? I guess it doesn't matter so much if the Domain Admin account exists on both DCs...