On 20/10/2020 16:55, Stefano Vargiu via samba wrote:> Hello everyone, > > can someone please tell me if the configuration previously shown is > eventually going to work? >No. Active directory doesn't like multi-homed computers. You will be better off removing the extra network devices from your DC's, so they only have one IP. Then set up a Unix domain member and use this as your VPN server. Rowland
Sorry, I don't get it. You mean a domain member as opposed to a domain controller? In which way is it going to help? Il giorno mar 20 ott 2020 alle ore 18:10 Rowland penny via samba < samba at lists.samba.org> ha scritto:> On 20/10/2020 16:55, Stefano Vargiu via samba wrote: > > Hello everyone, > > > > can someone please tell me if the configuration previously shown is > > eventually going to work? > > > No. > > Active directory doesn't like multi-homed computers. > > You will be better off removing the extra network devices from your > DC's, so they only have one IP. Then set up a Unix domain member and use > this as your VPN server. > > Rowland > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >
On 20/10/2020 17:46, Stefano Vargiu wrote:> Sorry, I don't get it. > > You?mean a domain member as opposed to a domain controller? > In which way is it?going?to help? >You should really only use a Samba AD DC for authentication, so the best idea would be to add a Unix domain member to the domain and install openvpn or freeradius or some other program that will do what you require. This is know to work and I am sure, if you do decide to go down this path, that you will get help here. Your way doesn't work and I am very sure that it will never work. Rowland