hello
i have setup two domains UNI-STAFF and UNI-STUD, both point at same ldap
for auth and have different domainSID's
What i would like but dont know how to do is....
*Both domains to appear in the Windows Domain logon Box
*Accounts (in LDAP) which have the UNI-STAFF sambaSID to be able to
logon to the UNI-STAFF domain (or UNI-STUD as i think this is how trusts
work)
*Accounts (in LDAP) which have the UNI-STUD sambaSID to be only able to
logon to the UNI-STUD domain
The important thing is students cant login to the staff domain.
i know i need to use the "net rpc trustdom establish <domain>"
and
"smbpasswd -a -i <domain> " commands but i am not sure which
command on
which domain, i have tried and anyone can logon to any domain?
also which domain does the machines need to be added to? also which SID
should my groups use ?
Any help?
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Daniel Wilson
Systems Administrator
IT & Communications Service
University of Sunderland
Unit1 Technology Park
Chester Road
Sunderland
SR2 7PT
Tel: 0191 515 2695
This e-mail contains information which is confidential and may be privileged and
is for the exclusive use of the recipient.
It is the responsibility of the recipient to ensure that this message and its
attachments are virus free.
Any views or opinions presented are solely those of the author and do not
necessarily represent those of the University, unless otherwise specifically
stated.
