> Is this a classic NT4-style domain ? if so, I think it is microsofts subtle > way of telling you to upgrade your PDC :-)I have seen that during my brief testing. I am in the tough situation of never ever being able to use AD. Well specifically I can not have DNS servers because of a company policy. My linux servers exist on a private network with no connection to the internet or the company. All clients are multi-homed. As a result I am not sure I will roll out Win10 at all. I am worried that a future release will totally eliminate NT4 domains. John
On 31/03/16 17:57, John Drescher wrote:>> Is this a classic NT4-style domain ? if so, I think it is microsofts subtle >> way of telling you to upgrade your PDC :-) > I have seen that during my brief testing. I am in the tough situation > of never ever being able to use AD. Well specifically I can not have > DNS servers because of a company policy. My linux servers exist on a > private network with no connection to the internet or the company. All > clients are multi-homed. As a result I am not sure I will roll out > Win10 at all. I am worried that a future release will totally > eliminate NT4 domains. > > JohnSounds like a strange policy, but do you mean you cannot have a dns server that connects to the internet or just you cannot have a dns server ? If the former, you should be aware that you do not have to connect an AD domain to the internet, you just need the dns server to find the other domain machines and the DCs, or in other words, don't forward anything outside the domain. Rowland
> Sounds like a strange policy, but do you mean you cannot have a dns server > that connects to the internet or just you cannot have a dns server ? >I can not have any of my linux machines connect in any way to the internet or the company servers. I could install a dns server with no forwarders as long as it is not on the company network.> > If the former, you should be aware that you do not have to connect an AD > domain to the internet, you just need the dns server to find the other > domain machines and the DCs, or in other words, don't forward anything > outside the domain.So I can have the samba dns listed as a dns server on the clients on the private network nic and also the company dns servers listed on the company network nic? I thought that the dns lookup would look to the first dns server (and if it was the private samba dns server that did not forward) this would fail then the client machines would not be able to resolve any internet or company addresses. Thanks, John