[Samba] I want to use CNAMES for my SAMBA server, how?
Gerald (Jerry) Carter
jerry at samba.org
Tue Jul 11 01:11:32 GMT 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Daniel Huntley wrote:
> netbios aliases = in your smb.conf
>
> Then setup the cname in DNS and point it to the correct
> A record.
Hmmm....This would work for NTLM but I don;t see how it
would work for Krb5. The client has to request a service
ticket for the cifs/${cname} principal. The AD KDC will
grant service tickets based on the servicePrincipalName
attribute for a computer (plus some thunking down...
e.g. s/cifs/host/).
The netbios alias trick will allow the server to advertise
its names in the network browsing elections and the cnames
handle cross subnet name resolution. But you still have
to worry about the client obtaining the ticket in the first
place.
Did I just misunderstand the original question?
cheers, jerry
=====================================================================
Samba ------- http://www.samba.org
Centeris ----------- http://www.centeris.com
"What man is a man who does not make the world better?" --Balian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org
iD8DBQFEsvrEIR7qMdg1EfYRAlUTAKCwqEiLfCuLT/6AH48YzIYAMVnrVQCeIITO
skAJG9fseLlstPJX7xEazMw=
=ucHM
-----END PGP SIGNATURE-----
More information about the samba
mailing list