[Samba] AD Auth, but Unix users and groups

Fajar Priyanto fajarpri at cbn.net.id
Mon Oct 22 14:27:00 GMT 2007

On Monday 22 October 2007 21:01:54 Gerald (Jerry) Carter wrote:
> Fajar,
> > I'm a newbie, so pls pardon me if I'm saying something here.
> > AFAIK, security = ADS is used when we want our samba to
> > act as "middle-man"  only, that is it forwards the authentication
> > request to the AD. So, it's self  doesn't do the authentication.
> Not correct.    When performing Krb5 authentication in an AD
> domain, smbd decrypts the service ticket oin the client's session
> setup request to validate the user.  The DC is not contacted
> at all.  You are referring to security = domain or other NTLM
> based auth mechanisms.

Hello Jerry, thanks for the exact info :)
I'm happy that the list is still monitored by the samba team.
Salut! :)
Fajar Priyanto | Reg'd Linux User #327841 | Linux tutorial 
21:26:01 up 1:13, 2.6.20-16-generic GNU/Linux 
Let's use OpenOffice. http://www.openoffice.org
The real challenge of teaching is getting your students motivated to learn.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.samba.org/archive/samba/attachments/20071022/b7a76255/attachment.bin

More information about the samba mailing list