Samba as member server in Win2k domain

Dan Perik Work dan_perik-work at ntm.org.pg
Sun Apr 15 23:22:17 GMT 2001 

Thank you for your input on that.  I found out that our
accounting users don't need to log in to the Accounting
Win2k domain.  They just need a username/password in the
domain.  I can use a seperate domain for the file serving
and keep it seperate from the Win2k stuff.  And, yes, I did
mean "native mode" vs. "mixed mode".  I'm just not
super-fluent in all the terminology.

- Dan

On Sat, 14 Apr 2001 13:53:45 +0100 (BST)
 Martin Radford <martin at zamenhof.demon.co.uk> wrote:
> 
> > for their authentication.  Unfortunately, the Win2000
> domain
> > is running Active Directory, not "legacy" WinNT mode.
> 
> All Windows 2000 domains run Active Directory.  I assume
> you mean it's
> in "natie" mode, as opposed to "mixed" mode. 
> 
> > My question is, can Samba participate in a Win2000
> domain as
> > a member server?  This is the deal, the 2 Win2000
> servers
> 
> Yes.
> 
> > each have 10 client access licenses (which is all we
> need
> > for our accounting system).  Our entire network has
> about 70
> > clients.  I don't want to go through the expense for
> another
> > copy of Win2000 server, and the extra client access
> licenses
> > that would be necessary to host the fileserving on
> Win2000.
> > So if Samba can be a member server, and if our clients
> log
> > in to the domain (authenticate via the Win2000 Domain
> > Controller) and only access shares on the Samba server,
> can
> > we get around having to get the extra client licenses?
> I
> 
> Microsoft's position on Win2k licencing is that: 
> 
> "You need ... a Windows 2000 Server Client Access License
> (CAL) for
> each client computer that is used by an authenticated
> user or that
> uses Windows 2000 Server Services."
> 
> ... and ...
> 
> "An authenticated user is one who directly or indirectly
> uses the
> Windows 2000 Server Integrated Sign-on Service or
> receives credentials
> from the Windows 2000 Active Directory(TM) service."
> 
> [Source:
> http://www.microsoft.com/windows2000/guide/server/pricing/model.asp
> ]
> 
> So my reading is that if you're using a Samba server in a
> Windows 2000
> domain, you need a CAL for each PC accessing that server.
> 
> > would rather not do it this way, but if we're going to
> use
> > Linux/Samba as the PDC for our file serving, we would
> > probably need to use a different domain than the
> Win2000
> > machines, causing more complexity - the issue we're
> trying
> > to avoid.  We Could reinstall the 2 Win2000 servers,
> and run
> > the domain in legacy mode, but that's not the most
> wonderful
> > option, either.  Especially since that's someone else's
> > jurisdiction, and they wouldn't go for that too easily.
> 
> Martin
> -- 
> Martin Radford              |   "Only wimps use tape
> backup: _real_ 
> martin at zamenhof.demon.co.uk | men just upload their
> important stuff  -o)
> Registered Linux user #9257 |  on ftp and let the rest of
> the world  /\\
> - see http://counter.li.org |       mirror it ;)"  -
> Linus Torvalds _\_V
>

More information about the samba-ntdom mailing list