Pascal de Bruijn
2005-Jan-18 16:41 UTC
[Samba] Tutorial: Samba as NT4 Primary Domain Controller
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, I'm writing a tutorial with which people can easily setup a Samba machine as a NT4 Primary Domain Controller (using CentOS 3). I'm handling just about everything that's related: - - NTP - - DHCP - - Samba - - SNMP and more... Note that this is only a preliminary version, it may contain errors. But I'd really appriciate any kind of feedback! http://members.home.nl/keizerflipje/sambapdc/samba.pdf Regards, Pascal de Bruijn -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFB7TweOauq/dYfFnQRAkOrAJ4hw02FRd0ejYXuq6KurKMvDJ8qogCdGZwL +ojQNeI6ERjtQzBEgHPnCAg=joRI -----END PGP SIGNATURE-----
Hi, Got a 2k ADS server with a trust to NT4 PDC... what I'm trying to achieve is to have users on the NT4 PDC assigned to security groups in Win2k AD, with Samba joined to the AD and authenticating users in AD. I have the NT4 -> 2k trust working fine both directions. Samba has been joined to the 2k AD realm. Running wbinfo -g I can see 2k global groups and NT4 groups however I cannot see 2k local domain groups. The problem with this arrangement is that NT4 users can only be members of a 2k local domain group, and not a global group. so, 2k local groups contain the users I want to authenticate, but I can only see 2k global groups (which can't contain NT users). catch-22 any ideas? I've tried creating global groups containing local domain groups - no joy. I'm running in mixed mode for the trust to work. any help / suggestions appreciated. Cheers, Steve
Pascal de Bruijn
2005-Jan-18 18:53 UTC
[Samba] Tutorial: Samba as NT4 Primary Domain Controller
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Tomasz Chmielewski wrote: | Pascal de Bruijn wrote: | |> -----BEGIN PGP SIGNED MESSAGE----- |> Hash: SHA1 |> |> Hello, |> |> I'm writing a tutorial with which people can easily setup a Samba |> machine as a NT4 Primary Domain Controller (using CentOS 3). |> |> I'm handling just about everything that's related: |> - - NTP |> - - DHCP |> - - Samba |> - - SNMP |> and more... |> |> Note that this is only a preliminary version, it may contain errors. |> But I'd really appriciate any kind of feedback! |> |> http://members.home.nl/keizerflipje/sambapdc/samba.pdf | | | I just looked through that document very fast, (as I already have my PDC | running), but didn't see anything about keeping password in an LDAP | database. | As I remember, this part (LDAP) was troublesome for me. | | It would be also nice to hear about software | installation/updates/deploayment on clients, controlled from the PDC/BDC | - I use WPKG for that - http://wpkg.sf.net | | My 3 cents, you asked for that :) | | | Tomek | Hi, Well LDAP is beyond the target scope of my article... It's intended for small businesses only. I really didn't want to both with LDAP, as I have no use for it... at least not yet anyway... And application deploy might be a thought for the future... Thanks for your thoughts, Pascal de Bruijn -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFB7VsrOauq/dYfFnQRAjCwAJ49SKfrCt4J03gKly2xbHh5mojF3wCeJlNG NOaYjnsFritwACD4biPlPco=1Du8 -----END PGP SIGNATURE-----