I have two Samba/LDAP servers as Domain Controlers in a PDC/BDC configuration. My problem is when an account is locked and I unlock it in LDAP (using GOSA), the "L" flag is removed and replicated to the slave LDAP, but the account remains locked in Samba BDC. I'll explain it with commands: [root@PDC samba]# pdbedit -L user -v | grep -i flags Account Flags: [UX ] [root@BDC samba]# pdbedit -L user -v | grep -i flag Account Flags: [ULX ] [root@PDC samba]# /usr/local/openldap/bin/ldapsearch -D 'cn=manager,dc=foo,dc=com,dc=ar' -w xxxx uid=user -x sambaAcctFlags sambaAcctFlags: [U X ] [root@BDC samba]# /usr/local/openldap/bin/ldapsearch -D 'cn=manager,dc=foo,dc=com,dc=ar' -w xxxx uid=user -x sambaAcctFlags sambaAcctFlags: [U X ] [root@PDC samba]# smbd -V Version 3.0.31 [root@BDC samba]# smbd -V Version 3.0.31
> I have two Samba/LDAP servers as Domain Controlers in a PDC/BDC > configuration. My problem is when an account is locked and I unlock it > in LDAP (using GOSA), the "L" flag is removed and replicated to the > slave LDAP, but the account remains locked in Samba BDC. ... same with Samba 3.2.15 in 3.2.3 it worked fine.