From a3cc57919afacc941c9da7b4a4d7d8f68e2b3d0e Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Sun, 18 Feb 2018 13:35:32 -0600
Subject: [PATCH] samba-dc: Switch away from BIND9_DLZ

The BIND9_DLZ plugin turned out to be pretty flaky. It craps out
whenever `named` is reloaded, which seems to happen occasionally for
reasons I cannot identify. Combined with the weird SELinux issues, and
the fact that upstream recommends against it anyway, I decided to just
use the built-in DNS server in Samba.
---
 domain-controller.yml   |  1 -
 group_vars/samba-dc.yml | 14 --------------
 2 files changed, 15 deletions(-)
 delete mode 100644 group_vars/samba-dc.yml

diff --git a/domain-controller.yml b/domain-controller.yml
index cd482c9..5e05f55 100644
--- a/domain-controller.yml
+++ b/domain-controller.yml
@@ -4,4 +4,3 @@
     include_vars: '{{ item }}'
     with_fileglob: vault/samba-dc/{{ krb5_realm }}
 - import_playbook: samba-dc.yml
-- import_playbook: named-server.yml
diff --git a/group_vars/samba-dc.yml b/group_vars/samba-dc.yml
deleted file mode 100644
index d0f449b..0000000
--- a/group_vars/samba-dc.yml
+++ /dev/null
@@ -1,14 +0,0 @@
-named_keytab: /var/lib/samba/bind-dns/dns.keytab
-named_global_include:
-- /var/lib/samba/bind-dns/named.conf
-samba_dc_dns_backend: BIND9_DLZ
-named_listen:
-- addresses:
-  - any
-named_listen_v6:
-- addresses:
-  - any
-named_allow_query:
-- any
-named_allow_update:
-- any