[Samba] Replacing a Samba 3.0 Domain controller

Lee Brown leeb at ratnaling.org
Sun Jan 31 00:35:48 UTC 2016 

And if you are going the FreeBSD route, jails work provided you turn off
nbt.  I have two DC's and a member server (AKA file server), running on the
same metal.  HAProxy is load-balancing FreeBSD LDAPS queries against those
two DC's.

# jls
   JID  IP Address      Hostname                      Path
     2  10.1.1.7        jenkins
/usr/local/Jail/jenkins
    96  10.1.201.100    PgSQL94.in.test.org
/usr/local/Jail/full-PgSQL94
   277  -               rca
/usr/local/Jail/full-rca
  1000  10.1.200.99     dc-root.ad.test.org
/usr/local/Jail-AD/dc-root
  1001  10.1.200.98     dc-lodge.ad.test.org
/usr/local/Jail-AD/dc-lodge
  1002  10.1.200.101    fs-lodge.ad.test.org
/usr/local/Jail-AD/fs-lodge
  1003  10.1.1.3        ldap-proxy.in.test.org
/usr/local/Jail-AD/ldap-proxy
  2143  10.1.201.101    Bacula.in.test.org
/usr/local/Jail/full-bacula


On Sat, Jan 30, 2016 at 3:53 PM, David Bear <dwbear75 at gmail.com> wrote:

> Frank, I have had Windows 7 machines joined to a samba 3.x NT style domain
> for years and they work just fine.
>
> You do need to make a few registry entries which you can easily find with
> google.
>
> As for moving to AD style domain -- this is well worth the effort. If you
> are using linux, there is an option to run linux containers and place
> separate samba processes in these containers. I'm currently running samba
> 4.x this way. The samba AD domain control is running in a container while
> the samba file server is running in the linux host.  This seems to work
> just fine.
>
> Linux containers seem stable and mature. I think there are others running
> samba in this fashion. Learning how to manage the linux container system is
> worth it in order to be able to run samba as 'recommended' by the samba
> team.
>
>
>
> On Fri, Jan 29, 2016 at 7:50 AM, Frank Thynne <fthynne at elmplace.co.uk>
> wrote:
>
> > For many months I've been trying to replace a Samba 3.0 Domain Controller
> > with a version that will support Windows 7.
> >
> > Despite advice on Samba HOWTO that all supported versions will support
> > Windows 7 there seems to be an unstated caveat, namely that it must be
> > configured as an Active Directory Domain Controller. Microsoft's own
> advice
> > is that Windows 7 will not work with a Windows NT domain controller and
> is
> > not intended to do so.
> >
> > By itself, that would not be an obstacle, but there another (stated)
> > caveat that running AD and file sharing on the same computer is not
> > recommended. That means that the single server configuration that has run
> > trouble-free for ten years cannot be so simply replaced.
> >
> > Before I embark on a two-server configuration I'd welcome opinions on
> this
> > matter. In theory I suppose I could run two Virtual Servers on one
> > computer, but that looks like a high-risk approach.
> > --
> > To unsubscribe from this list go to the following URL and read the
> > instructions:  https://lists.samba.org/mailman/options/samba
> >
>
>
>
> --
> David Bear
> mobile: (602) 903-6476
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>

More information about the samba mailing list