Author Topic: Reverse PDC to BDC and BDC to PDC  (Read 1041 times)

mdtech

  • Zen Apprentice
  • *
  • Posts: 10
  • Karma: +1/-0
    • View Profile
Reverse PDC to BDC and BDC to PDC
« on: May 17, 2022, 06:59:27 pm »
Hello

I have 2 6.2 Zentyal Server.  1 (older) is the Primary DC and the other (Newer) is an Additional DC.  I would like the New to be our primary and remove the old server.
sudo ./ad-migrate ran just fine.
But Roaming Profiles and and associated data remain with the old server. If i change the users default server all I get are temporary profiles on the workstations.

Thanks

turalyon

  • Zen Warrior
  • ***
  • Posts: 197
  • Karma: +15/-0
    • View Profile
Re: Reverse PDC to BDC and BDC to PDC
« Reply #1 on: May 18, 2022, 11:13:47 am »
Hi,

Unfortunately, you cannot use roaming profile feature in a Zentyal server that was configured as an additional domain controller. Below are a few things you can try:

1. Retrieve the information of one domain user who uses the roaming profile.

Code: [Select]
ldbsearch -H /var/lib/samba/private.sam sAMAccountName=some_user_name

2. After you get that information, you will see an attribute that points to the 'old' server.

3. Through an LDIF file, change the value of that attribute for your current Zentyal. Below is an example:

Code: [Select]
## LDIF content
dn: CN=Gabriel Batistuta,CN=Users,DC=lab,DC=lan
changetype: modify
replace: profilePath
profilePath: \\additional.LAB.LAN\profiles\gabriel

## Command to apply the LDIF
ldbmodify -H /var/lib/samba/private/sam.ldb roaming-profile.ldif

NOTE: I didn't use this method for a while, so try it in a test environment.

4. Copy the domain user personal roaming folder to the other Zentyal server.

NOTE: Be careful with the permissions and the directory structure. It must the same on both servers.

5. Try to login with that domain user and check if it worked.

Hope it helps.

--
“This world is ours, and by the Holy Light we will keep it safe, now and forever".