[Samba] Replication issues / local DRS authentication failure
Rowland penny
rpenny at samba.org
Wed Oct 21 08:17:21 UTC 2020
On 20/10/2020 22:51, Christopher Cox via samba wrote:
> On 10/20/20 3:25 PM, Rowland penny via samba wrote:
>> On 20/10/2020 21:09, Derek Lambert wrote:
>>> I really dislike Raspian, and there's not a 64bit release yet.
>>>
>>> Does the official Debian distro use Heimdal? Ubuntu?
>>
>> Cannot really speak for the rpi, I just use mine as a Unix domain
>> member running raspbian, but it is basically only the distros based
>> on red-hat distros that use MIT. If the Arm version of Ubuntu is like
>> the X86-64 version (and I no reason to believe otherwise) it will use
>> Heimdal. Not sure about the Suse Arm distro (which uses RPMs), but it
>> may be worth considering.
>
> openSUSE does have libheimdal and libheimdal-devel, but samba and
> default kerberos... all MIT.
>
> With that said, way back in 2016, Red Hat promised to get problems
> using MIT kerberos resolved with regards to having a Samba DC. In
> their words, "...Andreas, Guenther and Alexander at Red Hat are
> working diligently every day towards this. We're planning to get to
> that sooner rather than later." (again, from 2016)
>
> Others pointed out that Red Hat's "working diligently" meant work on
> sssd though.
>
>
>
Red-hat has since said that they will not be producing Samba packages
that will provision as a DC, they seemingly want you to use freeIPA
instead (Which in my opinion isn't as feature rich as AD), it should be
also noted that sssd cannot be used with Samba >= 4.8.0
Rowland
More information about the samba
mailing list