Ian Collins wrote: > Alan.M.Wright wrote: >> Ian Collins wrote: >>> Ian Collins wrote: >>>> Afshin Salek wrote: >>>> >>>>> Currently, Solaris CIFS server does not support LDAP authentication. >>>>> >>>> OK, so we're stuck with Samba. >> >> Only if you require authentication via LDAP. > > We do, all of our service and authentication infrastructure is Solaris > based.
That may not be an issue unless you have a site rule about LDAP. The fact that some CIFS clients or member servers use NETLOGON to comunicate with a domain controller doesn't preclude the underlying account database from being AD or another LDAP schema. Other clients and servers can use LDAP, the results should be the same. >> The Solaris CIFS service >> authenticates AD domain users using the NETLOGON service. >> >>> To follow up, how do people replace stand alone samba servers when AD >>> isn't used for authentication? >> >> The Solaris CIFS service provides both domain member server and >> standalone operation. Documentation is here: >> > I'll have to retry domain membership. I was unable to join the server > to the domain, possibly because we don't have any DNS service records > for the domain. I believe the windows machines still use WINS. Yes, currently, the service relies on DNS SRV records. WINS/NetBIOS domain resolution is disabled but it should be available within a few weeks. Alan >>> We have an old style PDC (Samba on Linux). >> >> The CIFS service should work with Samba 3.x, and later, domain >> controllers. Samba 2.x PDC should also be okay but it had a quirky >> NETR retry requirement and I don't think we have included it in >> regression testing for a long time. > OK, thanks for the feedback. > > -- > Ian. > > _______________________________________________ cifs-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
