I would like to experiment doing the equivalent of a Windows 2008 corporate
server, with Active Directory service and more.
That is, replace the Windows server with Linux, and then having Windows and
Linux clients, authenticating and having their permissions and shares
controlled from the Linux server box - as it can be done with W AD and
policies.
Can somebody point me to documentation for this?
Or a good google search parameter?
Or is this only done with a SLES and it sets it up automatically somehow?
–
Cheers / Saludos,
Carlos E. R.
(from 11.4 x86_64 “Celadon” at Telcontar)
> Either I’m completely misunderstanding you…
>
> …doesn’t Samba do this?
>
> (E.g. from the “Samba server” tab in YaST, then set the server to act as
> a Primary Domain Controller, etc.?)
>
> Good luck,
> K.
I don’t think SAMBA emulates an AD server, does it? AFAIK it’s just an
NT4 style domain.
On 2012-02-21 20:45, Jim Henderson wrote:
> On Tue, 21 Feb 2012 19:26:02 +0000, Kalenz wrote:
>
>> Either I’m completely misunderstanding you…
>>
>> …doesn’t Samba do this?
>>
>> (E.g. from the “Samba server” tab in YaST, then set the server to act as
>> a Primary Domain Controller, etc.?)
>
> I don’t think SAMBA emulates an AD server, does it? AFAIK it’s just an
> NT4 style domain.
No, it doesn’t. At least I have to integrate an LDAP server and probably
kerberos.
I have been told there exists a howto for ubuntu, but I haven’t looked at
it yet.
–
Cheers / Saludos,
Carlos E. R.
(from 11.4 x86_64 “Celadon” at Telcontar)
On Tue February 21 2012 03:23 pm, Carlos E. R. wrote:
> On 2012-02-21 20:45, Jim Henderson wrote:
>> On Tue, 21 Feb 2012 19:26:02 +0000, Kalenz wrote:
>>
>>> Either I’m completely misunderstanding you…
>>>
>>> …doesn’t Samba do this?
>>>
>>> (E.g. from the “Samba server” tab in YaST, then set the server to act as
>>> a Primary Domain Controller, etc.?)
>>
>> I don’t think SAMBA emulates an AD server, does it? AFAIK it’s just an
>> NT4 style domain.
>
> No, it doesn’t. At least I have to integrate an LDAP server and probably
> kerberos.
>
> I have been told there exists a howto for ubuntu, but I haven’t looked at
> it yet.
>
Carlos E.R.
Samba4 is available and does emulate most aspects of an AD environment. It is
still considered experimental although it is being deployed in production
systems. The wiki page is a good place to start see: http://wiki.samba.org/index.php/Main_Page#Samba4
I have not as yet setup a Samba4 domain, so I can not give much advice about
it.
–
P. V.
“We’re all in this together, I’m pulling for you.” Red Green
····················
Active Directory Domain with Samba Domain Member Server
One of the much-sought-after features new to Samba-3 is the ability to join
an Active Directory domain using Kerberos protocols. This makes it possible
to operate an entire Windows network without the need to run NetBIOS over
TCP/IP and permits more secure networking in general. An exhaustively
complete discussion of the protocols is not possible in this book; perhaps
a later book may explore the intricacies of the NetBIOS-less operation that
Samba-3 can participate in. For now, we simply focus on how a Samba-3
server can be made a domain member server.
····················
so, that’s a no. It can join an existing AD domain, not create one.
But I’ll have a good read, thanks.
–
Cheers / Saludos,
Carlos E. R.
(from 11.4 x86_64 “Celadon” at Telcontar)
On Tue February 21 2012 05:43 pm, Carlos E. R. wrote:
> On 2012-02-21 23:10, PV wrote:
>
>> Samba3 gives you an NT4 style domain. One of the best documents, just a tad
>> old, is “Samba-3 by Example”
>> http://www.samba.org/samba/docs/man/Samba-Guide/
>
,snip>
> ····················
>
> so, that’s a no. It can join an existing AD domain, not create one.
>
> But I’ll have a good read, thanks.
>
That’s why you need Samba4. It can create an AD domain (mostly). Just not
fully ready for “prime time”.
P. V.
“We’re all in this together, I’m pulling for you.” Red Green