[Samba] dns/ad domain provisioning and naming
Peter Serbe
peter at serbe.ch
Thu Jan 22 02:29:18 MST 2015
Jeff Henze schrieb am 22.01.2015 02:02:
> 1) I would like my users to log in to workstations with
> flast at thisismycompany.com and/or timc\flast.
If the domain is set up as
[global]
workgroup = LOCAL
realm = local.thisismycompany.com
then the domain users would log in as local\flast.
I am not sure, whether LOCAL makes up a good domain name...
> 2) I'm not yet trusting my configuration skills in Bind, so I'd like to use
> samba_internal as the DNS backend for now.
Bind is very cool, for isolating the internal DNS from the
rest of the world. No need to worry for Bind running on the
DC. If You got a slave DNS, You have to disable forwarders
for Your internal zone, i.e.:
zone "local.thisismycompany.com" {
type slave;
masters { *your DCs go here* };
file "/etc/bind/namedb/bak.local.thisismycompany.com";
forwarders{};
};
I always liked Bind... :-)
HTH & Best regards
More information about the samba
mailing list