freeipa

Clone
Source Code
GIT

#8452 update samba configuration on IPA master to explicitly use 'server role' setting
Closed: fixed 2 years ago by rcritten. Opened 3 years ago by abbra.

Closed: fixed
Reopen Issue

Samba 4.13 considers to deprecate and future versions would remove domain logons setting in smb.conf. This will affect how smbd considers its configuration for non-AD DC setup (NT4 domains mode) which is used by FreeIPA.

looking at lp_find_server_role() and lp_is_security_and_server_role_valid(), we need to define

 server role = CLASSIC PRIMARY DOMAIN CONTROLLER
 security = user

explicitly. Right now we have

 security = user
 domain master = yes
 domain logons = yes

and no server role, so it defaults to AUTO and will require an update of the configuration to set server role explicitly.

Metadata Update from @abbra:
- Issue set to the milestone: FreeIPA 4.9
2 years ago

Metadata Update from @fcami:
- Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/5519
2 years ago

master:

  • d6ccb9b Update samba configuration on IPA master to explicitly use 'server role' setting

ipa-4-9:

  • 2b64a4e Update samba configuration on IPA master to explicitly use 'server role' setting

Metadata Update from @rcritten:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)
2 years ago

Login to comment on this ticket.

Metadata
None
None
None
None
None
None
None
None
None
None
None
None
None
None
https://github.com/freeipa/freeipa/pull/5519
None
None
None
None
None
None
None
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.