Difference between revisions of "Manually Replicating Directory Partitions"

(Added admonition about replication agreements. Minor other changes.)
(Being more concrete about that forcing the replication does not create a replication agreement.)
Line 1: Line 1:
 
= Introduction =
 
= Introduction =
  
In certain situations, it is necessary to manually force a replication for an Active Directory (AD) partition between two domain controllers (DC).
+
In certain situations, it is necessary to manually replicate an Active Directory (AD) partition from one domain controller (DC) to another.
  
 
{{Imbox
 
{{Imbox
 
| type = important
 
| type = important
| text = Manually forcing a replication does not create a replication agreement between DCs. For further details, see [[The Samba KCC]].
+
| text = If you manually replicate an AD partition between DCs that do not have a replication agreement, the content is replicated. However, this operation does not create the replication agreement. For further details, see [[The Samba KCC]].
 
}}
 
}}
 +
  
  

Revision as of 21:00, 12 May 2017

Introduction

In certain situations, it is necessary to manually replicate an Active Directory (AD) partition from one domain controller (DC) to another.




Manually Replicating Directory Partitions

To manually replicate all AD partitions from domain controller DC1 to DC2:

# samba-tool drs replicate DC2 DC1 dc=samdom,dc=example,dc=com
Replicate from DC1 to DC2 was successful.

# samba-tool drs replicate DC2 DC1 DC=ForestDnsZones,DC=samdom,DC=example,DC=com
Replicate from DC1 to DC2 was successful.

# samba-tool drs replicate DC2 DC1 CN=Configuration,DC=samdom,DC=example,DC=com
Replicate from DC1 to DC2 was successful.

# samba-tool drs replicate DC2 DC1 DC=DomainDnsZones,DC=samdom,DC=example,DC=com
Replicate from DC1 to DC2 was successful.

# samba-tool drs replicate DC2 DC1 CN=Schema,CN=Configuration,DC=samdom,DC=example,DC=com
Replicate from DC1 to DC2 was successful.

By default, the samba-tool drs replicate command replicates only object operations that were not ran on the destination DC. This includes:

  • Create new objects
  • Updated changed objects
  • Delete removed objects

To resynchronise all objects in a partition, pass the --full-sync option to the command.