[Samba] SUCCESS report: samba3 as single-sign-on provider in heterogeneous network

Andrew Bartlett abartlet at samba.org
Mon Oct 13 09:53:30 GMT 2003 

On Sun, 2003-10-12 at 19:34, Marcus Blomenkamp wrote:
> Am Freitag, 10. Oktober 2003 02:57 schrieben Sie:
> > >
> > > lan. Roaming profiles perform great with only one warning being spit out
> > > on the winxp machines: 'cannot find active directory controller' or
> > > similar ;)
> >
> > That's an interesting one - I've not seen that.  Any ideas what triggers
> > it?
> 
> Hi, 
> I classified it as cosmetical. See: 
> http://www.eventid.net/display.asp?eventid=15&source=AutoEnrollment

Are you using the ISC DHCP server?  

There is an option in the dhcpd.conf:

ignore client-updates;

That might help here.  It should tell the client not to try and update
DNS.

> >
> > Personally, I don't think this is the right way to do it - NFS is a much
> > better match for unix semantics.    Now, the trouble is securing NFS -
> > but I think that NFSv4, SFS (www.fs.net) and the like are a better match
> > for this problem space.
> 
> Last time I quickly looked over NFSv4 sources it seemed as if they did not 
> authenticate users but hosts only. There is of course no gain in security 
> compared to a classical VPN then. I'd appreciate if I were just outdated or 
> wrong in this regard.
> 
> SFS also looks promising on a first glance, i should definitively check their 
> papers. All those projects seem quite under-represented in print or 
> online-media.

Let me know how you go with it.  

Andrew Bartlett

-- 
Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20031013/99b0a89a/attachment.bin

More information about the samba mailing list