NT Domain and Samba as a PDC

Todd Pfaff pfaff at edge.cis.McMaster.CA
Wed Mar 3 17:45:22 GMT 1999 

Paul,

I run a number of samba 2.0.2 PDCs on Solaris 2.5.x SPARC hosts.  While
samba-2.0.2 is not advertised as having PDC support it works fine for me.
In one site, I provide all of the following services from my samba-2.0.2
PDC to about 15 NT workstations and 100 users spread across three physical
subnets:

- WINS
- domain logins
- home directories
- roaming profiles
- synchronized NIS and SMB passwords
- lots of applications including:
  - SDRC I-DEAS
  - Hummingbird eXceed
  - StarNet X-Win32
  - Microsoft Visual C++
  - Microsoft Office
  - Wordperfect Suite 8
  - ssh
  - PC-Pine
  - Cygnus GNU development environment

This all works very well and is wonderfully stable.

I did, however, run into a problem when I tried to move to samba-2.0.3.
I have a hunch that this problem may be due to the extensive byte-ordering
fixes that were made between 2.0.2 and 2.0.3 because I've seen messages
from other people claiming that they are running 2.0.3 as a PDC on linux
(Intel hardware I assume).  I'll stick with 2.0.2 for now and hopefully
this problem will be fixed in 2.0.4.  I'm also considering moving to the
2.1.0-prealpha code, but this is more experimental and I wouldn't run this
in production yet.

If and when you decide to run a samba-2.0.x PDC, feel free to email me
directly if you have any configuration questions.


On Thu, 4 Mar 1999, Paul L. Lussier wrote:

> Hi all,
> 
> I'm currently battling with my Corp. IS group over NT domain administration.
> I admin a mostly Unix environment with a lot of WinXX clients.  The
> authentication server is owned by "Corporate" (you know, that nameless, 
> faceless entity that always makes do stupid things because
> "That's the policy"  :) and I have no control over it.
> 
> What I'd like to do is slowly sneak away from them by implementing a Samba
> PDC and creating my own domain here.  My question is, is it easier to set
> up a real WinNT server to be the PDC and have accounts on it, and have
> Samba authenticate against that, or, would it be easier to begin creating
> Unix accounts for everyone and just have Samba authenticate against
> NIS.  Obviously my preference is the later :)
> 
> My concerns however, are password changing/aging, etc. and the use of user
> profiles.  I have John's book, but that was written around 1.9.18 and doesn't
> include the PDC stuff in 2.0.x.
> 
> I haven't downloaded the 2.0.x stuff yet.  Are the docs that come with it
> sufficient to get me where I need/want to go today :)  Or should I wait for
> the O'Reilly book due out rsn.
> 
> Any opinions, ideas, pointers to docs, etc. are quite welcome :)
> 
> Thanks,
> 
> 
> -- 
> 
> Seeya,
> Paul
> ----
> plussier at baynetworks.com
> Broadband Technology Division - Bay Networks (now a Nortel Company, Eh? :)
> 
> 	If you're not having fun, you're not doing it right!
> 
> 

--
Todd Pfaff                         \  Email: pfaff at mcmaster.ca
Computing and Information Services  \ Voice: (905) 525-9140 x22920
ABB 132                              \  FAX: (905) 528-3773
McMaster University                   \
Hamilton, Ontario, Canada  L8S 4M1     \

More information about the samba mailing list