The Samba-Bugzilla – Bug 12008
RODCs are not read-only
Last modified: 2016-07-04 07:10:20 UTC
RODCs can add and delete objects from their local LDB without restriction. This is because the only relevant RODC check is only done to modifications. A side-effect of this is that the KCC creates local links from an RODC to other DCs.