samba - Jul 2016 - Why is Samba4 not recommended as a file server?

On 28/07/16 09:29, Reindl Harald wrote:
>
>
> Am 28.07.2016 um 10:12 schrieb Rowland penny:
>>
>> This is all very well and good Michael, but what if you only have one
>> computer?
>
> then you setup a virtual machine which many people do in general for 
> every service
>
>
But what if you don't want to setup a VM ?

Rowland

On Thu, Jul 28, 2016 at 09:34:24AM +0100, Rowland penny
wrote:
> On 28/07/16 09:29, Reindl Harald wrote:
> >
> >
> >Am 28.07.2016 um 10:12 schrieb Rowland penny:
> >>
> >>This is all very well and good Michael, but what if you only have
one
> >>computer?
> >
> >then you setup a virtual machine which many people do in general for
every
> >service
> >
> >
> 
> But what if you don't want to setup a VM ?
You can of course export file shares from a DC. It's just that our file
server has seen much wider deployment as an AD member instead of a DC,
that's all. There is much more experience with it, and all the topics
around idmapping are much better known. I'm not saying that they are
much better implemented, it's just the better-known setup.

Volker

On 28/07/16 09:43, Volker Lendecke wrote:
> You can of course export file shares from a DC. It's just that our 
> file server has seen much wider deployment as an AD member instead of 
> a DC, that's all. There is much more experience with it, and all the 
> topics around idmapping are much better known. I'm not saying that 
> they are much better implemented, it's just the better-known setup. 
> Volker 
Hi Volker, as far as I can see, the only problem is idmapping, only 
yesterday I found out that giving Domain Admins a gidNumber isn't a good 
idea, the group needs to own Policies in sysvol.

Rowland

Rowland - thanks for your comments in favor of AD/DC as file server. 

I apologize for not being more specific in my initial post about stating that I
was talking
about Samba4 as AD/DC, not just as a "classic" file server, although
it appears that after the
first several comments list responders figured that out.

As I said in my initial post, I am not using the AD/DC as a traditional file
server. I am using
it for a Maildir repository and for redirected folders. In the case of the
latter, I did have
to configure smb.conf with the following:

[netlogon]
        path = /var/lib/samba/sysvol/hprs.local/scripts
        read only = No

[sysvol]
        path = /var/lib/samba/sysvol
        read only = No

[Users]
    path = /redirectedFolders/Users
    comment = user folders for redirection
    read only = No
                                          
per Alexwyn's excellent instruction, "Folder Redirection using Group
Policy - Samba 4 AD DC":

http://www.alexwyn.com/computer-tips/folder-redirection-samba4-active-directory-domain-controller

So, even though users don't do a specific "Map network drive" on
their WIN7 workstations, this
config may technically be a samba share / file server.

As I said, I've been running this setup for about 2 years with zero problem.

--Mark

-----Original Message-----
Date: Thu, 28 Jul 2016 10:43:05 +0200
From: Volker Lendecke <vl at samba.org>
To: Rowland penny <rpenny at samba.org>
Cc: samba at lists.samba.org
Subject: Re: [Samba] Why is Samba4 not recommended as a file server?

On Thu, Jul 28, 2016 at 09:34:24AM +0100, Rowland penny
wrote:
> On 28/07/16 09:29, Reindl Harald wrote:
> >
> >
> >Am 28.07.2016 um 10:12 schrieb Rowland penny:
> >>
> >>This is all very well and good Michael, but what if you only have
one
> >>computer?
> >
> >then you setup a virtual machine which many people do in general for
every
> >service
> >
> >
> 
> But what if you don't want to setup a VM ?
You can of course export file shares from a DC. It's just that our file
server has seen much wider deployment as an AD member instead of a DC,
that's all. There is much more experience with it, and all the topics
around idmapping are much better known. I'm not saying that they are
much better implemented, it's just the better-known setup.

Volker

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba