[Samba] Samba documentation team

Gaiseric Vandal gaiseric.vandal at gmail.com
Fri Apr 4 15:02:58 MDT 2014 

I use Samba 3.x domain controllers with an standards-compliant  LDAP 
backend.  The LDAP backend also provides authentication to unix servers 
from linux clients, user authentication to web servers,  etc.   LDAP 
supports all the necessary attributes for samba and unix users, radius 
groups, and autofs maps, e-mail address and phone numbers etc .       So 
a migration from Samba 3 to Samba is not just a migration for the 
Windows clients to an AD domain (which would  be great) it is also 
involves migrating  my LDAP backend to use the Samba server.

The samba wiki fact indicates that domain trusts are not fully 
functional , which makes it effectively unusable for now.


So I am in some what of a state of limbo-  not wanting to be in a NT4 
domain any more but not able to move to a  Samba AD domain.

It is also not encouraging that the documentation  page on 
www.samba.org  (including the official how to)  is for Samba 3.       It 
suggests that Samba 4 is still only for early adopters or testers.


On 04/03/14 18:13, Jonathan Buzzard wrote:
> On 03/04/14 11:49, Klaus Hartnegg wrote:
>>
>>> How about removing anything to do with setting up a NT4 domain and
>>> restricting mention of it to migrating from an NT4 domain to an AD
>>> domain.
>>
>> The documentation should document the product. A large part of the
>> product is non-AD, for very good reasons. The AD part is not even
>> complete yet. It is unrealistic to assume that a large fraction of
>> the users will switch to AD mode anytime soon.
>>
>
> It is unrealistic of users to continue to expect NT4 domains to work 
> properly in Windows 7 onwards. You have to roll out nasty registry 
> hacks that degrade security in order to do so for starters. For all we 
> know Microsoft may (and really should) pull it completely from the 
> next version of Windows.
>
> The primary reason as I see it for the NT4 domain stuff in Samba is to 
> smooth the migration to a Samba AD.
>
> At the very least any section on setting up a NT4 domain should come 
> with prominent and repeated warnings not to start down the path of a 
> new one, and you should be migrating to a AD based domain as soon as 
> possible.
>
> JAB.
>

More information about the samba mailing list