[Samba] Which guide is better for setting up and configuring Samba 4.23.5 as a Windows Server 2022 Active Directory Domain Controller?
Rowland Penny
rpenny at samba.org
Fri Feb 27 19:19:20 UTC 2026
On Fri, 27 Feb 2026 15:52:32 +0000
Turritopsis Dohrnii Teo En Ming <teo.en.ming at protonmail.com> wrote:
> On Friday, 27 February 2026 at 6:59 PM, Rowland Penny via samba
> <samba at lists.samba.org> wrote:
>
> > On Fri, 27 Feb 2026 10:33:16 +0000
> > Turritopsis Dohrnii Teo En Ming via samba <samba at lists.samba.org>
> > wrote:
> >
> > > On Thursday, 26 February 2026 at 11:39 PM, Luis Peromarta via
> > > samba <samba at lists.samba.org> wrote:
> > >
> > > > Also you shouldn’t use rfc2307 while provisioning. Learn why.
> > > >
> > > > http://samba.bigbird.es/doku.php?id=samba:no-need-for-use-rfc2307
> > >
> > > I have no idea what is RFC2307 though.
> >
> > RFC2307 refers to a Read For Comment document, which you can find
> > here:
> >
> > https://datatracker.ietf.org/doc/html/rfc2307
> >
> > It is about ldap attributes such as 'uidNumber', 'gidNumber' etc and
> > all the rfc2307 attributes are standard in the AD schema.
> > When you add '--use-rfc2307' to the provision command, it does two
> > things, it adds the 'ypServ30.ldif' to AD (this is the 'scaffolding'
> > required by the old Windows IDMU) and it adds 'idmap_ldb:use
> > rfc2307 = Yes' to the DCs smb.conf. Neither are required for AD to
> > function, not even on Linux.
> >
> > Rowland
>
> Probably too complicated for me to understand.
>
If you think that is complicated, then, in my opinion, running a Samba
AD domain is probably as complicated and, again in my opinion, you
shouldn't be advising other people how to set up a Samba AD domain, you
obviously don't really understand it.
Rowland
More information about the samba
mailing list