After 'consultation' with idra, this is how I think the server roles should work...

Andrew Bartlett
author: Andrew Bartlett <abartlet@samba.org> 2003-03-11 10:06:34 +0000
committer: Andrew Bartlett <abartlet@samba.org> 2003-03-11 10:06:34 +0000
commit: 5c1f1005907bf50b809dfae1f8251c7122103098 (patch)
tree: 18bb94cafc6e9716c6936b3b4ce6304c31099c86 /source/param
parent: e1431424e7603d946f63cfe7fe669b0b32ac8095 (diff)
download: samba-5c1f1005907bf50b809dfae1f8251c7122103098.tar.gz
1 files changed, 9 insertions, 4 deletions
diff --git a/source/param/loadparm.c b/source/param/loadparm.c
index 2a83905a9f6..5bffa2c8625 100644
--- a/source/param/loadparm.c
+++ b/source/param/loadparm.c
@@ -3804,18 +3804,23 @@ static void set_server_role(void)
 
 	switch (lp_security()) {
 		case SEC_SHARE:
-		case SEC_SERVER:
-		case SEC_ADS:
 			if (lp_domain_logons())
 				DEBUG(0, ("Server's Role (logon server) conflicts with share-level security\n"));
 			break;
-		case SEC_DOMAIN:
+		case SEC_SERVER:
+			if (lp_domain_logons())
+				DEBUG(0, ("Server's Role (logon server) conflicts with server-level security\n"));
+			break;
+		case SEC_ADS:
 			if (lp_domain_logons()) {
-				server_role = ROLE_DOMAIN_BDC;
+				server_role = ROLE_DOMAIN_PDC;
 				break;
 			}
 			server_role = ROLE_DOMAIN_MEMBER;
 			break;
+		case SEC_DOMAIN:
+			if (lp_domain_logons())
+				DEBUG(0, ("Server's Role (logon server) NOT ADVISED with domain-level security\n"));
 		case SEC_USER:
 			if (lp_domain_logons()) {
author	Andrew Bartlett <abartlet@samba.org>	2003-03-11 10:06:34 +0000
committer	Andrew Bartlett <abartlet@samba.org>	2003-03-11 10:06:34 +0000
commit	5c1f1005907bf50b809dfae1f8251c7122103098 (patch)
tree	18bb94cafc6e9716c6936b3b4ce6304c31099c86 /source/param
parent	e1431424e7603d946f63cfe7fe669b0b32ac8095 (diff)
download	samba-5c1f1005907bf50b809dfae1f8251c7122103098.tar.gz