On 21 May 2002, at 6:01pm, Paul Iadonisi wrote: > Unlike one poster wrote (forgot who), however, I *think* that you do need > a machine account on the PDC in order to even join the domain.
Um, not exactly. When one speaks of "joining a computer to a domain", what they are actually describing is the process of creating a machine account on the domain controller. That account is used to create a mutual trust between the domain and the machine. The details of what that trust is used for I am fuzzy on. However, I do know for a fact that a machine account is not required to authenticate against an NT domain controller. We have systems in production that run the Squid proxy server, and authenticate proxy access against an NT domain controller. Not only do they not have a machine account, they do not even run Samba. A machine account may allow more sophisticated mechanisms to be used, but for basic username/password verification, you do not need one. Hope this helps, -- Ben Scott <[EMAIL PROTECTED]> | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | ***************************************************************** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *****************************************************************
