Thanks. I'm wondering if I can avoid storing NT-hash (that unsalted MD4) of user passwords, and still be able to join a Windows Server 2022 server to the domain, and authenticate users with samba. Maybe I should read some documentation and open another thread.