---Didier Ruch <ruch@wanadoo.fr> wrote:>
> Hello,
>
> to the samba ML you wrote :
> ------------------------------
>
>> I am not a member of the samba listserv, but I wanted to contribute
>> the following code to the samba effort.
>>
>> (snip)
>>
> I think such a functionnality is already being implemented in the
NTDOM branch of samba.>
> For instance, Luke Kenneth Casson Leighton is developping a DCE /
RPC code, intended to make a UNIX server become a (multi) NT domain
controller, each domain manageable with M$oft SRVTOOLS for WIN9x /
NT.>
> Would you please check this NTDOM branch (it has also a ML), and
tell me if your idea differs from it ?>
> Thanks in advance.
>
> Didier Ruch
> Systems and networks adm.
>
>
Didier
Yes, I have downloaded and experimented with the NTDOM branch of
samba. As you said, their goals are to make a full domain controller
in which user addresses and profiles are given out by the Samba server.
What my patch did for me was allow me to piggy back off of the
corporate NT domain controller. I am not the administrator of that
controller and have no admin rights to the domain.
I also don't want to go to all of the hassles of maintaining a domain.
So i have piggy backed my Samba server to the corporate controller.
I published some shares and attached the security for those shares to
group memberships on the domain.
So when a new user is hired, the corporate admin creates a user
account and adds that user to the correct "corporate groups". In
doing so, he also granted that user rights to the appropriate shares
on my samba server(s). I don't have to lift a finger to administer my
samba server. I don't even know day to day who has been added. But
as long as corporate security is in tact, so is mine.
This is very similar to a win95 machine in user security mode.
Clay
_________________________________________________________
DO YOU YAHOO!?
Get your free @yahoo.com address at http://mail.yahoo.com