I set up winbind on one box successfully. Now a friend told me that it might be better to use ActiveDirectoriy (the PDC and all other servers are win2000). What is the difference in both approaches? which is 'better'? I feel that ldap is the more general and cleaner solution. Is that true? My windows-admins will get rid of wins soon. does winbind rely on wins? can libnss-ldap also create pseudo UIDs and GIDs?
On Fri, 2 Nov 2001, Andreas Schuldei wrote:> I set up winbind on one box successfully. Now a friend told me > that it might be better to use ActiveDirectoriy (the PDC and all > other servers are win2000). What is the difference in both > approaches? which is 'better'? > > I feel that ldap is the more general and cleaner solution. Is > that true? My windows-admins will get rid of wins soon. does > winbind rely on wins? can libnss-ldap also create pseudo UIDs and > GIDs?IIRC MS uses a non-standard NIS schema in the SFU 2.0 active dircetory add-on (non rfc2307). Unless Luke Howard has adapted nss_ldap to work with this recently, you best bet will still be winbind. Are you using Samba? Samba requires NTLMv1 and netbios services to belong to a Windows domain (even a Win2k domain). cheers, jerry --------------------------------------------------------------------- www.samba.org SAMBA Team jerry_at_samba.org www.plainjoe.org jerry_at_plainjoe.org --"I never saved anything for the swim back." Ethan Hawk in Gattaca--
* Gerald (Jerry) Carter (jerry@samba.org) [011105 06:22]:> Are you using Samba? Samba requires NTLMv1 and netbios > services to belong to a Windows domain (even a Win2k domain).yes, I do use samba 2.2.2-2 (the last is the debian package version). So if my windows admins switch off wins, will NTLMv1 and netbios be still activ? I understand what netbios is, but the NTLM does not tell me anything. I wonder if my samba servers will stop working.
On Mon, 5 Nov 2001, Andreas Schuldei wrote:> yes, I do use samba 2.2.2-2 (the last is the debian package > version). > > So if my windows admins switch off wins, will NTLMv1 and netbios > be still activ? I understand what netbios is, but the NTLM does > not tell me anything. I wonder if my samba servers will stop > working.Are you telling me that there are no non-win2k/xp clients on the network ? Win9x? NT4? NTLM is the challenge/response authentication protocol used to handle validation requests (as opposed to the newer NTLMv2 designed to prevent man-in-the-middle attacks or Win2k kerberos). cheers, jerry --------------------------------------------------------------------- www.samba.org SAMBA Team jerry_at_samba.org www.plainjoe.org jerry_at_plainjoe.org --"I never saved anything for the swim back." Ethan Hawk in Gattaca--
* Gerald (Jerry) Carter (jerry@samba.org) [011105 15:50]:> > So if my windows admins switch off wins, will NTLMv1 and netbios > > be still activ? I understand what netbios is, but the NTLM does > > not tell me anything. I wonder if my samba servers will stop > > working. > > Are you telling me that there are no non-win2k/xp clients on > the network ? Win9x? NT4?win2k, lots of them. Did I imply otherwise? I just do not know so much about the windows internals. I want to know if my winadmins can break samba without breaking win2k by removing wins.
On Mon, 5 Nov 2001, Andreas Schuldei wrote:> win2k, lots of them. Did I imply otherwise? I just do not know so > much about the windows internals. I want to know if my winadmins > can break samba without breaking win2k by removing wins.Samba will need netbios name resolution (including WINS). cheers, jerry