[Samba] Samba4 DC with Secondary Questions
Nowell Morris
nowell29 at gmail.com
Wed Jun 7 22:49:22 UTC 2017
Kris, thank you for your input. We have been using GADS (google sync)
with samba3 and openldap for years now. I am just looking at moving
upwards to samba4. I will take your thoughts seriously. I appreciate the
wisdom.
I am about to just throw in the towel and setup NIS.... jk
--
Nowell Morris
nowell29 at gmail.com
480-255-3491
On Wed, Jun 7, 2017 at 11:11 AM, Kris Lou via samba <samba at lists.samba.org>
wrote:
> On Wed, Jun 7, 2017 at 10:29 AM, Nowell Morris via samba <
> samba at lists.samba.org> wrote:
>
> > We are setting up a Primary DC with AD, using BIND9_DLZ, also serving
> > dhcpWe have been using samba 3 with openldap for some years now and
> >
> successfully sync with Google Apps for our mail.
> >
>
> Good luck with this. The last time I checked, GAPS had problems with the
> way Samba4 passwords are hashed (it was expecting X format, but Samba does
> it in Y). The only way around it is to store passwords in plaintext, which
> is somewhat undesirable. GADS might work in terms of account creation on
> both ends, but I haven't looked that far into it.
>
> AFAIK, the only way to synchronize Google Apps credentials is to run it
> with SSO -- which then offloads the Google Auth directly onto the S4
> environment. You'll still have issues with IMAP requiring the original
> Google credentials, and I don't know how Google's 2FA would work with this
> (though if you're using SSO, you'd probably have your own 2FA as well).
> But if you're purely using webmail, it'll work.
>
>
> Kris Lou
> klou at themusiclink.net
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
>
More information about the samba
mailing list