What is the User Account System (UAS)?

Jeremy Allison jallison at whistle.com
Tue Apr 28 19:55:01 GMT 1998

Phil Cox wrote:
> The more I look into this domain authentication, the more confused I
> become. While reading MS KB Article Q78209, I read:
>   The Netlogon service is executed to replicate the user accounts system
>   (UAS) database between a primary domain controller (PDC), a backup domain
>   controller (BDC), and member servers, and to validate logons to the
>   logical domain the servers are in.
> I am assuming that the user accounts system is referring to the SAM and
> info in the NetLogon share. I am reading this to be the "domain
> syncronization of the SAM & other associated domain info" goes to the BDC's
> (which makes sense) BUT ALSO the member servers?????? Where am I going
> wrong here? Under what (if any) circumstances do memeber servers take part
> in the syncronization of a domain?

Never. Member servers authenticate against PDCs/BDCs but
do not get the account details. I know this 'cos I just
got the code working (in a testbed harness) to do domain
authentication from a UNIX client to a Samba PDC. Now to
test against an NT PDC and then check in the 'security=domain'
code :-).


Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.

More information about the samba-ntdom mailing list