使用 zentyal 內建指令取得AD五大角色

測試環境

舊DC: zentyal-ad
新DC: zentyal8

確認目前五大角色都在舊DC上

登入舊DC
root@zentyal-ad:~# samba-tool fsmo show
ldb_wrap open of secrets.ldb
SchemaMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
InfrastructureMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
RidAllocationMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
PdcEmulationMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
DomainNamingMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
DomainDnsZonesMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
ForestDnsZonesMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab

登入新DC
root@zentyal8:~# samba-tool fsmo show
ldb_wrap open of secrets.ldb
SchemaMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
InfrastructureMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
RidAllocationMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
PdcEmulationMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
DomainNamingMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
DomainDnsZonesMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
ForestDnsZonesMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab

輸入寫的Y，開始轉移
root@zentyal8:~# cd /usr/share/zentyal-samba
root@zentyal8:/usr/share/zentyal-samba# ./ad-migrate
WARNING: This script will transfer all FSMO roles from the current owners to
the local server.
After all roles has been successfully transferred, you can shutdown
the other domain controllers.
Do you want to continue [Y/n]? Y

Checking server mode...

Checking if server is provisioned...

Transferring FSMO roles...
Transferring Schema Master role from owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
Transferring Domain Naming Master role from owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
Transferring PDC Emulation Master role from owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
Transferring RID Allocation Master role from owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
Transferring Infrastructure Master role from owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
Migrated successfully!

最後確認兩台五大角色是否都已經顯示成新的DC

舊DC
root@zentyal-ad:~# samba-tool fsmo show
ldb_wrap open of secrets.ldb
SchemaMasterRole owner: CN=NTDS Settings,CN=ZENTYAL8,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
InfrastructureMasterRole owner: CN=NTDS Settings,CN=ZENTYAL8,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
RidAllocationMasterRole owner: CN=NTDS Settings,CN=ZENTYAL8,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
PdcEmulationMasterRole owner: CN=NTDS Settings,CN=ZENTYAL8,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
DomainNamingMasterRole owner: CN=NTDS Settings,CN=ZENTYAL8,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
DomainDnsZonesMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
ForestDnsZonesMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab

新DC
root@zentyal8:/usr/share/zentyal-samba# samba-tool fsmo show
ldb_wrap open of secrets.ldb
SchemaMasterRole owner: CN=NTDS Settings,CN=ZENTYAL8,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
InfrastructureMasterRole owner: CN=NTDS Settings,CN=ZENTYAL8,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
RidAllocationMasterRole owner: CN=NTDS Settings,CN=ZENTYAL8,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
PdcEmulationMasterRole owner: CN=NTDS Settings,CN=ZENTYAL8,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
DomainNamingMasterRole owner: CN=NTDS Settings,CN=ZENTYAL8,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
DomainDnsZonesMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab
ForestDnsZonesMasterRole owner: CN=NTDS Settings,CN=ZENTYAL-AD,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydc,DC=lab

ad dc zentyal

helloworld

Hello World

helloworld 發表在痞客邦留言(0) 人氣(10)

Hello World

:D

使用 zentyal 內建指令取得AD五大角色

momo shop

近期文章

誰來我家

我的地盤

最新迴響

文章分類

參觀人氣

pixGoogleAdsense1

pixGoogleAdsense2

留言板