[Samba] /etc/hosts and DHCP

Rowland Penny rowlandpenny241155 at gmail.com
Mon Sep 28 09:37:36 UTC 2015 

On 28/09/15 09:58, mathias dufresne wrote:
> 2015-09-25 23:44 GMT+02:00 Ross Boylan <rossboylan at stanfordalumni.org>:
>
>> It's sounding as if maybe I should stick with some earlier server model
>> because the AD I participate in is not one I administer.  Even if I did, I
>> wouldn't want all the accounts on my local machine to be in the AD.
>>
> Local accounts don't go in AD. Even in Samba's AD.
>
> AD comes with its own users database. This database can be used by system
> side - using winbind or sssd or perhaps nlscd, this kind of configuration
> is done through /etc/nsswitch.conf and a bit more - but is not system
> database.
>
> Linux system users database is /etc/passwd (keyworkd "files" in
> nsswitch.conf for lines "shadow", "passwd" and "group").
>
> So including your server into AD would not transfer local users into AD but
> merely give that server the possibility to use AD users as system users and
> as file sharing users. (Dear list members, correct me if I was wrong, it's
> morning there ;)

Indeed, this was what I was trying to get across, if you have a server 
with local users and it is not joined to the domain, then the local 
users will not be able to access anything in the domain and vica-versa.

Rowland

>
>
>
>> Is it technically possible for me to have a subdomain within the larger
>> one?  E.g., if the overall realm is ucsf.edu, I'd administer ross.ucsf.edu
>> ?
>>
> Yes it is, this is called "trust relationship".
> To proceed you will need a full agreement from ucsf.edu domain admins as
> they will trust your domain, giving all your users access to their
> resources, which won't certainly not be possible (these admins could have
> reasons not trusting you nor your users).
>
>
>> I have been looking for a way to centralize account management within my
>> linux machines, but doing so via AD sounds very indirect.
>>
> What do you meant by "looking for a way to centralize account management
> within my
> linux machines"?
> Did you meant you want your Linux machines can use centralized users
> database? (Here you would plug your linux on AD)
> Or did you meant you want to have another database with your own users
> dedicated to Linux Boxes? (Here you would need a new AD domain or something
> similar)
>
>
>> Ross
>>
>>

More information about the samba mailing list