NT user authentication

Dejan Ilic svedja at lysator.liu.se
Mon Dec 7 19:12:14 GMT 1998

On Tue, 8 Dec 1998, Luke Kenneth Casson Leighton wrote:

> > Adding Unix to NT domain may require quite complex setup. And it is my firm
> > feeling, that everything should be done explicitly. There is no place for
> > defaults. If you cannot decide what credentials a given user gets on Unix -
> > be on safe side and deny any connection.
> > 
> > In other words - either Domain (_any_ Domain) user is explicitly mapped to
> > Unix - or it is denied access.
> oh dear, what do yother people think about this?  would you agree that any
> user not explicitly mapped to a domain user (through, say, "domain user
> map", should be denied acess)?
> luke

I think this should be configurable, and that the default behaviour
should be as MS does it, but also leave a possibiity to keep it
simple for those who doesn't wan't the administrative overhead.

Dejan Ilic, Tech Univ. of Linkoping, Sweden    Phone:+46-13-473 01 06
Email: svedja at lysator.liu.se   Web: http://www.lysator.liu.se/~svedja
[finger -l svedja at lysator.liu.se for public PGP key]

More information about the samba-ntdom mailing list