net join to ads domains
Jim McDonough
jmcd at us.ibm.com
Fri Jan 14 15:25:19 GMT 2005
metze at samba.org wrote:
>and I think w2k3 refused to set that via LDAP.
>
>http://msdn.microsoft.com/library/default.asp?url=/library/en-us/ad/ad/dswriteaccountspn.asp
>
>...Using LDAP to write directly to the SPN property is not allowed; all
writes must come through
>this RPC call. Reads using LDAP are allowed....
Are you sure? I can't say for sure against win2k3, but win2k claimed this
to be true and yet allowed writes via LDAP. In any case, it's probably
best to do it via the "proper" method.
----------------------------
Jim McDonough
IBM Linux Technology Center
Samba Team
6 Minuteman Drive
Scarborough, ME 04074
USA
jmcd at us.ibm.com
jmcd at samba.org
Phone: (207) 885-5565
IBM tie-line: 776-9984
More information about the samba-technical
mailing list