one server for two domains

MCCALL,DON (HP-USA,ex1) don_mccall at
Thu May 3 17:23:21 GMT 2001

Hi Martin,
There are a couple of things you could do;
1. have your nt admins set up a trust between the two NT domains, and have
"allow trusted domains = yes" (which is the default) in your smb.conf.  Then
when domainb/user  tries to access a resource on samba, which is
authenticating to domaina, the password server in domaina will authenticate
the user via the trust between domaina/domainb.
2. If these couple of users are the exception, you could just create a local
smbpasswd file
and add them and their passwords via smbpasswd program.  That way, when the
authentication fails on the password server, samba will 'fallback' to
checking for the users in it's smbpasswd file, and if it finds them, and the
password is correct, it will authenticate them locally.
Method ONE is preferred, IMHO...

Hope this helps,
 "Reason, not volume, is the primary
differentiator between a discussion, and an

-----Original Message-----
From: Martin Foerster [mailto:mafoe at]
Sent: Thursday, May 03, 2001 9:04 AM
To: samba-ntdom at
Subject: one server for two domains

Hi there,

I have a samba server installed with security=domain, password server is
PDC. Now a couple of user will join a different NT domain, but they still
need the same access on the samba server as before.
Is it possible in any way, to access the same samba server with
security=domain and two different NT Domains for authentification ?

thanks for any input


More information about the samba-ntdom mailing list