PDC and BDC

[Olivier Roy De Rives]

Hello, I encountered a few problems setting up a Samba domain controller in
an NT domain:

I have an NT PDC and an NT BDC and I tried to setup Samba to join the
domain; everything was working great until the PDC was rebooted... the Samba
server took office as the PDC for that domain and I was no longer able to
log into the NT boxes (even as root/admin).
Also we had all our remote (dial-in) workstations unable to map a drive to
the Samba machine (not being member of the domain and most of them not
supporting password encryption...).
I returned to the simpler Samba 2.0.2 smb.conf setting: security = share,
which works for everyone...
I can't wait till Samba allows "true" NT PDC functionality, so I can get rid
of the NT PDC and administrate NT from Samba and the BDCs! Keep up the good
work...

PS: Here is a sample of the smb.conf file I had setup:

[global]
   dead time = 15
   printing = sysv
   printcap name = /etc/samba.printcap
   load printers = yes
   log file = /opt/tools/samba/logs/log.%m
   lock directory = /opt/tools/samba/var/locks
   netbios name = GP-DRAGON
   share modes = yes
   security = domain
   os level = 65
   passwd program = /usr/local/bin/expasswd %u
   encrypt passwords = yes
   update encrypted = yes
   unix password sync = yes
   workgroup = ISIS-D
   domain logons = yes
   password server = GP-DNT1 GP-DNT2
   hosts allow = 143.199.56. 127.
   hosts equiv = /etc/hosts.equiv
   server string = GP-DRAGON
   smbpasswd file = /opt/tools/samba/private/smbpasswd
   socket options = TCP_NODELAY
   domain master = no
   local master = no


Olivier  Roy De Rives
NT/UNIX Systems Administrator
Great-West Life & Annuity
Denver, CO
(303)689-4437
Fax: 689-4850