[Samba] How to minimize authentication traffic

Gaiseric Vandal gaiseric.vandal at gmail.com
Tue Jan 18 10:22:26 MST 2011


You should be able to have a Samba PDC in the "faraway" site and set up 
trusts with the AD PDC in the central site.

If the "faraway" users don't need to access files on the central server, 
than you probably don't even need trusts.


On 01/18/2011 11:33 AM, tms3 at tms3.com wrote:
>
>
>
>
>>
>> --- Original message ---
>> Subject: [Samba] How to minimize authentication traffic
>> From: Andreas Grabner <andreas at vianova.cc>
>> To: <samba at lists.samba.org>
>> Date: Tuesday, 18/01/2011  8:28 AM
>>
>> Hi,
>>
>> i have to set up a new server far away from home.
>> At the central i have a Win 2008 native AD server with a samba AD
>> member. Now i have to install a new server at an other location with a 1
>> Mbit/s connection. I don't know yet how reliable the connection will be.
>>
>> The users "faraway" should not need to manual authenticate to
>> fileservers in the Central.
>>
>> What would you recommend? I thought about an new domain with domain
>> trusts. Or should i make it just an AD member (what happens if the AD
>> Server is not reachable?)
>>
>> I think an other setup i have done years before (PDC -LDAP -[P|B]DC)
>> will not work with AD.
> If you don't need exchange you could try a Samba4 AD joined server and 
> local DNS. Depending on the size of the sattelite location YMMV. For a 
> large critical production environment, your best bet at this time 
> would of course be another M$ server.
>>
>>
>>
>> Any suggestions?
>>
>> Thanks
>> Andreas
>>
>> -- 
>> Andreas Grabner
>> +43 676 840 775 101
>> andreas at vianova.cc
>>
>> Via Nova Mediendesign GmbH
>> Augasse 24
>> A- 7400 oberwart
>> +4333 52 / 32 860
>> http://www.vianova.cc
>>
>> -- 
>> To unsubscribe from this list go to the following URL and read the
>> instructions: https://lists.samba.org/mailman/options/samba
>



More information about the samba mailing list