Samba Domains & Password authenication
David Collier-Brown
David.Collier-Brown at canada.sun.com
Thu Jul 27 15:34:34 GMT 2000
Chris Hines wrote:
> I would like to use samba as an NT domain controller for NT 4 & Windows 9X
> and posibly windows 2000. I have configured samba 2.0.7 and samba NTG as
> domain controllers and they seem to work.
>
> We wish our users to use a single password accross UNIX & windows which
> are copied from a central NIS map managed by the University. Some time in
> the future the university intends to start and active directory and
> provide us with a windows password server.
>
> Using the plain text registry update I was hopping to get samba to
> 1) validate machine passwords from the smbpassword file
> 2) validate user passwords from NIS or later from a password server
Not at the same time...
>
> Is this posible? Does the samba architure already do this or is there some
> documentation around which would point me to correct region of the code to
> do this?
Unless you have a preexisting commitment to get out of
the Unix business (;-)) and into using a Win2k Kerberos
server as the master server for the university, you may
want to avoid the "NT Domain" world and use your existing
authentication service.
Samba, with security = user" or "= server" will act as
a file server, print server and authentication server
for one or more workgroups within an overall Unix
domain. This has worked happily for me since 1.9.17 or
so, at the expense of having to have .reg files easily
available for resetting PC clients, and at the more serious
expense of having a firewall.
I expect TNG to be cool, and to actually have more functionality
than security = server, but it's not really production yet.
Feel free to send me mail: I used to be the Postmaster
and an acting manager at York University, and may be able
to help...
--dave
--
David Collier-Brown, | Always do right. This will gratify some people
185 Ellerslie Ave., | and astonish the rest. -- Mark Twain
Willowdale, Ontario | //www.oreilly.com/catalog/samba/author.html
Work: (905) 415-2849 Home: (416) 223-8968 Email: davecb at canada.sun.com
-or-
David Collier-Brown, | Cherish your enemies. They're harder to
Performance & Eng. | come by than friends and more motivated.
Sun Canada (ACE) | davecb at canada.sun.com
(905) 415-2849 | http://elsbeth.canada.sun.com/~davecb
More information about the samba-technical
mailing list