Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
[Samba] AD and SAMBA
10 views
Skip to first unread message
Biju...@cargill.com
May 9, 2012, 9:20:03 AM5/9/12
to
Hello all,
I am trying to understand how SAMBA finds nearest Domain Controller when
configured to use Active Directory for AuthN.
There are some great articles and wikis about how to configure SAMBA
against AD, but couldn't find much on what I was looking for.
For example
1. Does Samba have built in dc locator functionality like windows
clients ?
2. What is the default authN it uses, NTLM or Kerb ?
3. I understand from an article
(http://timstechnoblog.blogspot.com/search/label/Linux) that Winbind
when configured to use * for domain controller will invoke Dc locator
mechanism, but couldn't completely understand the relation b/w Samba and
Winbind - is it SAMBA always uses winbind for AD communication and
authentication ?
Root of all these questions are, SAMBA AD config I saw is configured to
use a single password server, which is a single point of failure. I am
trying to figure out how to avoid that.
Feel free to correct me if I asked stupid questions, my knowledge with
SAMBA and other components are very limited. Much appreciate your help.
Rgds
Biju
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
I am trying to understand how SAMBA finds nearest Domain Controller when
configured to use Active Directory for AuthN.
There are some great articles and wikis about how to configure SAMBA
against AD, but couldn't find much on what I was looking for.
For example
1. Does Samba have built in dc locator functionality like windows
clients ?
2. What is the default authN it uses, NTLM or Kerb ?
3. I understand from an article
(http://timstechnoblog.blogspot.com/search/label/Linux) that Winbind
when configured to use * for domain controller will invoke Dc locator
mechanism, but couldn't completely understand the relation b/w Samba and
Winbind - is it SAMBA always uses winbind for AD communication and
authentication ?
Root of all these questions are, SAMBA AD config I saw is configured to
use a single password server, which is a single point of failure. I am
trying to figure out how to avoid that.
Feel free to correct me if I asked stupid questions, my knowledge with
SAMBA and other components are very limited. Much appreciate your help.
Rgds
Biju
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Biju...@cargill.com
May 10, 2012, 9:50:02 AM5/10/12
to
Any suggestions on this ?
Rgds
Rgds
Andrew Bartlett
May 10, 2012, 10:40:01 PM5/10/12
to
On Wed, 2012-05-09 at 18:31 +0530, Biju...@cargill.com wrote:
> Hello all,
>
> I am trying to understand how SAMBA finds nearest Domain Controller when
> configured to use Active Directory for AuthN.
>
> There are some great articles and wikis about how to configure SAMBA
> against AD, but couldn't find much on what I was looking for.
>
> For example
> 1. Does Samba have built in dc locator functionality like windows
> clients ?
> 2. What is the default authN it uses, NTLM or Kerb ?
This is up to the client to choose, we support both.
> Hello all,
>
> I am trying to understand how SAMBA finds nearest Domain Controller when
> configured to use Active Directory for AuthN.
>
> There are some great articles and wikis about how to configure SAMBA
> against AD, but couldn't find much on what I was looking for.
>
> For example
> 1. Does Samba have built in dc locator functionality like windows
> clients ?
> 2. What is the default authN it uses, NTLM or Kerb ?
> 3. I understand from an article
> (http://timstechnoblog.blogspot.com/search/label/Linux) that Winbind
> when configured to use * for domain controller will invoke Dc locator
> mechanism, but couldn't completely understand the relation b/w Samba and
> Winbind - is it SAMBA always uses winbind for AD communication and
> authentication ?
for communication with Active Directory.
> Root of all these questions are, SAMBA AD config I saw is configured to
> use a single password server, which is a single point of failure. I am
> trying to figure out how to avoid that.
the most appropriate DC to contact,
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Biju...@cargill.com
May 11, 2012, 2:10:01 AM5/11/12
to
Thanx Andrew for the reply,
Simply omit 'password server' from your smb.conf. By default we find the most appropriate DC to contact -- Do u have any doc or link where I can read more about how does this works ?
Rgds
Simply omit 'password server' from your smb.conf. By default we find the most appropriate DC to contact -- Do u have any doc or link where I can read more about how does this works ?
Rgds
0 new messages