Created attachment 11237 [details] ldapcmp Hi I have multi domain environment with root domain and subdomain. Forest and domain level windows 2003 native. > Also forest prep and domain prep did for sccm 2007 ocs 2007 and Exchange 2003. After join Samba to domain like ad dc I had some problem with replication: ################################################# [root at dc03 ~]# samba-tool drs replicate dc02 dc03 dc=filial1,dc=company,dc=local ERROR(<class 'samba.drs_utils.drsException'>): DsReplicaSync failed - drsException: DsReplicaSync failed (8418, 'WERR_DS_DRA_SCHEMA_MISMATCH')
I'm receiving this too. Rejoining afresh doesn't help. Windows -> Samba works fine, Samba -> Windows stops working. Windows logs error 1203 on a particular object, then logs 1791 Windows (1791) Replication of application directory partition DC=x,DC=x,DC=x from source fe145470-8e21-45a8-b3ad-11d0d0ad1c46 (dc02.x.x.x) has been aborted. Replication requires consistent schema but last attempt to synchornize the schema had failed. It is crucial that schema replication functions properly. See previous errors for more diagnostics. If this issue persists, please contact Microsoft Product Support Services for assistance. Error 8418: The replication operation failed because of a schema mismatch between the servers involved.. SAMBA samba-tool drs replicate dc01 dc02 DC=x,DC=x,DC=x --sync-forced ERROR(<class 'samba.drs_utils.drsException'>): DsReplicaSync failed - drsException: DsReplicaSync failed (8418, 'WERR_DS_DRA_SCHEMA_MISMATCH') File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/drs.py", line 368, in run drs_utils.sendDsReplicaSync(server_bind, server_bind_handle, source_dsa_guid, NC, req_options) File "/usr/local/samba/lib/python2.7/site-packages/samba/drs_utils.py", line 83, in sendDsReplicaSync raise drsException("DsReplicaSync failed %s" % estr) root@dc02:/home/local# samba -v
the I have this problem with 4.5 and 4.9, too, and informed the mailinglist and found now this bugreport, so will add all my information here. # samba-tool -V 4.9.2-Debian # samba-tool drs showrepl Default-First-Site-Name\DC-SAMBA DSA Options: 0x00000001 DSA object GUID: 3715fa00-bdca-4782-a953-6d4b1fb08275 DSA invocationId: a2907a5d-6e53-42ce-a6e4-402b4e161313 ==== INBOUND NEIGHBORS ==== CN=Configuration,DC=credativ,DC=de Default-First-Site-Name\DC-WIN via RPC DSA object GUID: 65b05486-16e3-4b5b-9483-f568e6cdeef5 Last attempt @ Mon Dec 10 13:31:07 2018 CET was successful 0 consecutive failure(s). Last success @ Mon Dec 10 13:31:07 2018 CET DC=credativ,DC=de Default-First-Site-Name\DC-WIN via RPC DSA object GUID: 65b05486-16e3-4b5b-9483-f568e6cdeef5 Last attempt @ Mon Dec 10 13:33:11 2018 CET was successful 0 consecutive failure(s). Last success @ Mon Dec 10 13:33:11 2018 CET CN=Schema,CN=Configuration,DC=credativ,DC=de Default-First-Site-Name\DC-WIN via RPC DSA object GUID: 65b05486-16e3-4b5b-9483-f568e6cdeef5 Last attempt @ Mon Dec 10 13:31:07 2018 CET was successful 0 consecutive failure(s). Last success @ Mon Dec 10 13:31:07 2018 CET DC=DomainDnsZones,DC=credativ,DC=de Default-First-Site-Name\DC-WIN via RPC DSA object GUID: 65b05486-16e3-4b5b-9483-f568e6cdeef5 Last attempt @ Mon Dec 10 13:31:07 2018 CET was successful 0 consecutive failure(s). Last success @ Mon Dec 10 13:31:07 2018 CET DC=ForestDnsZones,DC=credativ,DC=de Default-First-Site-Name\DC-WIN via RPC DSA object GUID: 65b05486-16e3-4b5b-9483-f568e6cdeef5 Last attempt @ Mon Dec 10 13:31:07 2018 CET was successful 0 consecutive failure(s). Last success @ Mon Dec 10 13:31:07 2018 CET ==== OUTBOUND NEIGHBORS ==== CN=Configuration,DC=credativ,DC=de Default-First-Site-Name\DC-WIN via RPC DSA object GUID: 65b05486-16e3-4b5b-9483-f568e6cdeef5 Last attempt @ Mon Dec 10 12:24:01 2018 CET was successful 0 consecutive failure(s). Last success @ Mon Dec 10 12:24:01 2018 CET DC=credativ,DC=de Default-First-Site-Name\DC-WIN via RPC DSA object GUID: 65b05486-16e3-4b5b-9483-f568e6cdeef5 Last attempt @ Mon Dec 10 12:53:44 2018 CET was successful 0 consecutive failure(s). Last success @ Mon Dec 10 12:53:44 2018 CET CN=Schema,CN=Configuration,DC=credativ,DC=de Default-First-Site-Name\DC-WIN via RPC DSA object GUID: 65b05486-16e3-4b5b-9483-f568e6cdeef5 Last attempt @ Sun Dec 2 14:00:33 2018 CET was successful 0 consecutive failure(s). Last success @ Sun Dec 2 14:00:33 2018 CET DC=DomainDnsZones,DC=credativ,DC=de Default-First-Site-Name\DC-WIN via RPC DSA object GUID: 65b05486-16e3-4b5b-9483-f568e6cdeef5 Last attempt @ Mon Dec 10 13:28:32 2018 CET was successful 0 consecutive failure(s). Last success @ Mon Dec 10 13:28:32 2018 CET DC=ForestDnsZones,DC=credativ,DC=de Default-First-Site-Name\DC-WIN via RPC DSA object GUID: 65b05486-16e3-4b5b-9483-f568e6cdeef5 Last attempt @ Sun Dec 2 14:00:33 2018 CET was successful 0 consecutive failure(s). Last success @ Sun Dec 2 14:00:33 2018 CET ==== KCC CONNECTION OBJECTS ==== Connection -- Connection name: f34fb31f-32e9-42a4-af24-d305268446a5 Enabled : TRUE Server DNS name : dc-win.credativ.de Server DN name : CN=NTDS Settings,CN=DC-WIN,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=credativ,DC=de TransportType: RPC options: 0x00000001 Warning: No NC replicated for Connection! # samba-tool drs replicate dc-samba dc-win dc=credativ,dc=de Replicate from dc-win to dc-samba was successful. # samba-tool drs replicate dc-win dc-samba dc=credativ,dc=de ERROR(<class 'samba.drs_utils.drsException'>): DsReplicaSync failed - drsException: DsReplicaSync failed (8418, 'WERR_DS_DRA_SCHEMA_MISMATCH') File "/usr/lib/python2.7/dist-packages/samba/netcmd/drs.py", line 568, in run drs_utils.sendDsReplicaSync(server_bind, server_bind_handle, source_dsa_guid, NC, req_options) File "/usr/lib/python2.7/dist-packages/samba/drs_utils.py", line 88, in sendDsReplicaSync raise drsException("DsReplicaSync failed %s" % estr)