Curtis Vaughan said: > I have one samba server as the PDC for our org. Another samba server > is > > supposed to permit access to shares based on authentication from the > aforementioned PDC. I'll call this second computer "SMB" for > simplicity.
I reccomend configuring the 2nd server as a PDC and have it tie into the LDAP database as well. having 2 PDCs on a MS NT based network is not reccomended(possible?) with the same domain but with samba it is perfectly acceptable another option.. > > PDC has an LDAP and PAM database for authenticating all users. > > SMB is setup as follows (smb.conf): > > workgroup = NPC-USA > netbios name = SMB > server string = %h server (Samba %v) > security = DOMAIN you could change security = DOMAIN to security = SERVER > encrypt passwords = Yes > password server = * and set the password server = to the netbios name of your PDC > Well, unless I add a user to SMB (adduser *****) then that user will not > have access to any shares on SMB. This doesn't seem right, or is it? > Also, should the userID on the PDC be the same on SMB? What if I want > to use groups? Do I need to make the groups on PDC and SMB? normal samba(i.e. not -tng) does not support NT-style groups last I read, if you want to use UNIX groups, if your linux boxes authenticate using PAM/NSS(ldap) then tie the 2nd machine into the LDAP network and it will see the groups. nate -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
