From 7bb1eb677ed42472528ccd225e8a65a81daca388 Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Sun, 31 Oct 2021 21:07:49 -0500
Subject: [PATCH] r/samba-dc: Use rfc2307 on all DCs

I honestly don't remember why the `use rfc2307` setting was only enabled
on the first DC.  All DCs seem to need this setting in order to use the
UID/GID numbers from the directory, instead of using auto-generated
numbers.
---
 roles/samba-dc/templates/smb.conf.j2 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/roles/samba-dc/templates/smb.conf.j2 b/roles/samba-dc/templates/smb.conf.j2
index 6feb5d8..315ea3f 100644
--- a/roles/samba-dc/templates/smb.conf.j2
+++ b/roles/samba-dc/templates/smb.conf.j2
@@ -4,7 +4,7 @@
 	realm = {{ krb5_realm }}
 	server role = active directory domain controller
 	workgroup = {{ workgroup }}
-{% if samba_is_first_dc and samba_dc_use_rfc2307 %}
+{% if samba_dc_use_rfc2307 %}
 	idmap_ldb:use rfc2307 = yes
 {% endif %}