[Samba] Re: winbindd + mod_ntlm_winbind, why do we need "net join ..." ?

Juan Rodriguez juan.fco.rodriguez at gmail.com
Fri Sep 22 14:31:11 GMT 2006


On 9/22/06, Andrew Bartlett <abartlet at samba.org> wrote:
>
> [snipped]
>
> You must join.  Samba supports no other mode for mod_ntlm_winbindd.  It
> is more secure, as we gain some assurance that the DC is real, and more
> reliable, as the DC communication is stateless.
>
> This is identical to how windows member servers operate.  Other hacks
> often work, then fail (which is why ntlm_auth was created, to allow
> squid admins to use NTLM without these occasional failures)


Ok, I can guess this is the right way of doing this.  But I can't
ask for the DC Administrator's password to join the domain.
Is there an easy way to hack the source code and
avoid this limitation ?

As far as I can understand, this is a Samba restriction, not a windows one.
(correct me if I am wrong).

Thank you ver much for you help.





-- 
JFRH


More information about the samba mailing list