[Samba] Local vs public domain dns

Philippe LeCavalier support at plecavalier.com
Fri Mar 12 05:08:12 UTC 2021

> On Thu, Mar 11, 2021, 23:06 Jonathon Reinhart <jonathon.reinhart at gmail.com>
> wrote:
>> Hi Phil,
>> An account in AD can be identified by exactly one User Principal Name
>> (UPN), which takes the same form as an email address: user at domain.com.
>> The part after the @ sign is called the "UPN Suffix". The default UPN
>> suffix is the same as the provisioned domain name. If you've followed
>> Microsoft's advice, this is different from (or a subdomain of) your
>> main DNS domain, e.g. "ad.contoso.com". However, your users' UPNs will
>> not match their email addresses.
>> You can add additional UPN suffixes to your AD via the "Active
>> Directory Domains and Trusts" management console. Then when users are
>> created, you can select a different UPN suffix for their UPN --
>> presumably one that matches their email address.
>> Unfortunately, there is no way to set a "default" UPN suffix for new
>> accounts, nor is there a built-in way to ensure they are consistent.
>> However, my tool ADMan [1] can ensure UPN suffix consistency (across
>> the domain or within an OU).
>> Hope this helps,
>> Jonathon
> That's looks extremely promising and does most certainly answer my
> question. I've got some work to do but thank you very much.

More information about the samba mailing list