[Samba] AD Auth, but Unix users and groups
Fajar Priyanto
fajarpri at cbn.net.id
Mon Oct 22 14:27:00 GMT 2007
On Monday 22 October 2007 21:01:54 Gerald (Jerry) Carter wrote:
> Fajar,
>
> > I'm a newbie, so pls pardon me if I'm saying something here.
> > AFAIK, security = ADS is used when we want our samba to
> > act as "middle-man" only, that is it forwards the authentication
> > request to the AD. So, it's self doesn't do the authentication.
>
> Not correct. When performing Krb5 authentication in an AD
> domain, smbd decrypts the service ticket oin the client's session
> setup request to validate the user. The DC is not contacted
> at all. You are referring to security = domain or other NTLM
> based auth mechanisms.
Hello Jerry, thanks for the exact info :)
I'm happy that the list is still monitored by the samba team.
Salut! :)
--
Fajar Priyanto | Reg'd Linux User #327841 | Linux tutorial
http://linux2.arinet.org
21:26:01 up 1:13, 2.6.20-16-generic GNU/Linux
Let's use OpenOffice. http://www.openoffice.org
The real challenge of teaching is getting your students motivated to learn.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.samba.org/archive/samba/attachments/20071022/b7a76255/attachment.bin
More information about the samba
mailing list