[Samba] Samba4 + FreeIPA
Rowland Penny
rpenny at samba.org
Fri Nov 5 14:30:04 UTC 2021
On Fri, 2021-11-05 at 10:23 -0400, Robert Marcano via samba wrote:
> On 11/5/21 10:08 AM, Patrick Goetz via samba wrote:
> >
> > On 11/5/21 08:49, L.P.H. van Belle via samba wrote:
> > > Just a short reply on this part.
> > >
> > > > Currently, the Samba project is hurt by a lack of good
> > > > documentation.
> > > I dont fully agree here.. So its a .. Yes and No.
> > >
> > > There is lots of good documentation, but a "simple" NT4Dom is
> > > totaly
> > > different
> > > from an ADDOM, lots of things need to be taken account of and
> > > more
> > > basic knowledge
> > > these days is (sadly) needed, but that with almost any software.
> > >
> > > Older samba 3.x and NT4 is so different and in different i mean,
> > > more
> > > strict
> > > to setup correctly.
> > >
> > > > Samba 3 documentation was really good, but that effort wasn't
> > > > repeated
> > > > for v. 4 for some reason. There are no current books available,
> > >
> > > Well, there is a very good book, but .. Can you read german?
> > > https://www.kania-online.de/fachbuecher/samba-4/
> > >
> > >
> >
> > Oh, cool! I can read/speak German. I wonder if he's interested in
> > a
> > translated edition, not that I probably have time to do this
> > myself.
> >
> > Agreed on NT domain vs. AD domain. One documentation step that
> > would
> > help tremendously is to *completely* separate the NT, AD, and
> > workgroup
> > documentation. Who cares if this results in repetition of some
> > things?
>
> IMHO, any NT4 documentation should be cloned, put on an static
> website
> with a big warning, much like some old Samba 3 documentation on the
> project websites, and assume it doesn't exist anymore. Documentation
> on
> NT4 style domains only encourage people to install new ones today.
>
> Maybe the smb.conf should have a setting like:
>
> i_really_know_what_i_am_doing_and_promise_i_will_get_rid_of_this_nt4_
> domain_very_soon
> = yes
>
> In order for a NT DC to start. :)
Totally agree with that, but I would go further, even with that, it
should still refuse to start and print a message such as 'Refusing to
start an archaic and insecure system' :-D
Rowland
More information about the samba
mailing list