Samba as Domain Controller

Kristyan Osborne kris.ozzy at
Fri Mar 2 20:37:20 GMT 2001

I agree! In my old job at a school all client machines were win 95. A 95
machine can only be part of a workgroup and not a domain. Thus a domain
controller with a machine password database would make no sence if win 95 is
only validating a username and password.
We used a 2.0.7 server as a file-server with the user password database.

I am currently working on a NT 4 network with all clients NT4 wks controlled
by a samba server which is a PDC, as a machine database is required.



Computers are like airconditioners: They stop working
properly if you open windows.
Win95:    A 32-bit patch for a 16-bit GUI shell running on top of an
          8-bit operating system written for a 4-bit processor by a
          2-bit company who cannot stand 1 bit of competition.

-----Original Message-----
From: samba-ntdom-admin at
[mailto:samba-ntdom-admin at]On Behalf Of Richard Sharpe
Sent: 02 March 2001 16:19
To: Greg J. Zartman; samba-ntdom at
Subject: Re: Samba as Domain Controller

At 08:52 AM 3/2/01 -0800, Greg J. Zartman wrote:
>----- Original Message -----
>From: "Richard Sharpe" <sharpe at>
>To: "Adam Lang" <aalang at>; <samba-ntdom at>
>Sent: Wednesday, February 28, 2001 9:08 AM
>Subject: Re: Samba as Domain Controller
>> At 04:23 PM 2/28/01 -0500, Adam Lang wrote:
>> >I'm looking into using Samba as the domain controller for my network
>> >75 users on windows 9x).
>> For Win9X machines you do not need a PDC. Samba 2.0.7 will do fine for
>> these machines.
>This doesn't make any sense.  What does the client OS have to do with the
>weather or no you need a PDC???  A PDC basically centralizes netword admin
>on one machine.  The client OS makes no difference.


it makes eminent senses when you realize that Microsoft does not use the
Domain Controller protocols (Encrypted RPCs) for Win9X logons, but does for
WinNT and Windows 2000.

Thus, the client OS makes a big difference. Take my word for it, lots of
people are using Samba 2.0.7 and below as a logon server for Windows 95, 98
and ME, and have been doing so for years.

You do need to set the parameter 'domain logons = yes'. And, you might want
'encrypt passwords = yes', but then again, you might not.

Richard Sharpe, sharpe at
Samba (Team member,, Ethereal (Team member,
Contributing author, SAMS Teach Yourself Samba in 24 Hours
Author, Special Edition, Using Samba

More information about the samba-ntdom mailing list