[Samba] use AD-DC as fileserver

Andrew Bartlett abartlet at samba.org
Sat Mar 22 19:51:55 MDT 2014

On Sat, 2014-03-22 at 19:28 +0100, Klaus Hartnegg wrote:
> On 14.03.2014 22:23, Andrew Bartlett wrote;
> > On Thu, 2014-03-13 at 15:01 +0100, Simon Schneider wrote:
> >> Just to get this straight: Apart from the problem with browsing (which will
> >> be solved with samba 4.2?) and things like redundancy, server load etc.,
> >> from a technical standpoint it is perfectly OK to run Samba 4 AD +
> >> Fileserver with the same samba instance?
> >
> > It will be fine.  Just as long as you understand why we recommend
> > against it, it will do that task perfectly well.  That much has been
> > written and repeated often, so I won't say it again.
> I tried to find more about this, but were mostly unsuccessful. Is it 
> true that it affects mostly browsing, which is only a problem for XP 
> clients, and that version 4.2 will solve even this?

The issues around NetBIOS workgroup browsing "network neighbourhood" are
not relevant here, splitting in/out the file server won't help that
either way.

> > (The funny thing
> > is that, in some areas it will do 'better', because it runs by default
> > in a mode that perfectly preserves windows ACLs, because that it
> > required for AD DC operation on sysvol and netlogon).
> I thought that even late versions of samba3 can store all windows ACLs 
> in linux ACLs and xattr, the difference being only that samba4 as AD-DC 
> automaticly loads the required module, while otherwise it must be added 
> to smb.conf manually. Is AC-DC even better than that? This would be an 
> argument to not use a separate fileserver.

No, it is just that this is enabled by default, which we can't do
otherwise because we could break existing installations. 

Andrew Bartlett

Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

More information about the samba mailing list