s4:domain join: setup RODC invocationId

Pair-Programmed-With: Björn Baumbach <bb@sernet.de> metze Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Sat Aug 4 18:27:21 CEST 2012 on sn-devel-104
author: Stefan Metzmacher <metze@samba.org> 2012-08-03 12:47:11 +0200
committer: Stefan Metzmacher <metze@samba.org> 2012-08-04 18:27:21 +0200
commit: 86ee5909017880fc8771a62a495a1780a3517d64 (patch)
tree: 12a8c1603367a255690dea2b3706167d50d405e2 /source4/scripting
parent: 41cffa3c8b126570203e32c2024d5a8f439b529e (diff)
download: samba-86ee5909017880fc8771a62a495a1780a3517d64.tar.gz
samba-86ee5909017880fc8771a62a495a1780a3517d64.tar.bz2
samba-86ee5909017880fc8771a62a495a1780a3517d64.zip
1 files changed, 26 insertions, 0 deletions
diff --git a/source4/scripting/python/samba/join.py b/source4/scripting/python/samba/join.py
index 0d21279e25..41d97cb477 100644
--- a/source4/scripting/python/samba/join.py
+++ b/source4/scripting/python/samba/join.py
@@ -788,6 +788,32 @@ class dc_join(object):
         for nc in ctx.full_nc_list:
             ctx.send_DsReplicaUpdateRefs(nc)
 
+        if ctx.RODC:
+            print "Setting RODC invocationId"
+            ctx.local_samdb.set_invocation_id(str(ctx.invocation_id))
+            ctx.local_samdb.set_opaque_integer("domainFunctionality",
+                                               ctx.behavior_version)
+            m = ldb.Message()
+            m.dn = ldb.Dn(ctx.local_samdb, "%s" % ctx.ntds_dn)
+            m["invocationId"] = ldb.MessageElement(ndr_pack(ctx.invocation_id),
+                                                   ldb.FLAG_MOD_REPLACE,
+                                                   "invocationId")
+            ctx.local_samdb.modify(m)
+
+            # Note: as RODC the invocationId is only stored
+            # on the RODC itself, the other DCs never see it.
+            #
+            # Thats is why we fix up the replPropertyMetaData stamp
+            # for the 'invocationId' attribute, we need to change
+            # the 'version' to '0', this is what windows 2008r2 does as RODC
+            #
+            # This means if the object on a RWDC ever gets a invocationId
+            # attribute, it will have version '1' (or higher), which will
+            # will overwrite the RODC local value.
+            ctx.local_samdb.set_attribute_replmetadata_version(m.dn,
+                                                               "invocationId",
+                                                               0)
+
         print "Setting isSynchronized and dsServiceName"
         m = ldb.Message()
         m.dn = ldb.Dn(ctx.local_samdb, '@ROOTDSE')
author	Stefan Metzmacher <metze@samba.org>	2012-08-03 12:47:11 +0200
committer	Stefan Metzmacher <metze@samba.org>	2012-08-04 18:27:21 +0200
commit	86ee5909017880fc8771a62a495a1780a3517d64 (patch)
tree	12a8c1603367a255690dea2b3706167d50d405e2 /source4/scripting
parent	41cffa3c8b126570203e32c2024d5a8f439b529e (diff)
download	samba-86ee5909017880fc8771a62a495a1780a3517d64.tar.gz samba-86ee5909017880fc8771a62a495a1780a3517d64.tar.bz2 samba-86ee5909017880fc8771a62a495a1780a3517d64.zip