On Monday 22 October 2007 21:01:54 Gerald (Jerry) Carter wrote: > Fajar, > > > I'm a newbie, so pls pardon me if I'm saying something here. > > AFAIK, security = ADS is used when we want our samba to > > act as "middle-man" only, that is it forwards the authentication > > request to the AD. So, it's self doesn't do the authentication. > > Not correct. When performing Krb5 authentication in an AD > domain, smbd decrypts the service ticket oin the client's session > setup request to validate the user. The DC is not contacted > at all. You are referring to security = domain or other NTLM > based auth mechanisms.
Hello Jerry, thanks for the exact info :) I'm happy that the list is still monitored by the samba team. Salut! :) -- Fajar Priyanto | Reg'd Linux User #327841 | Linux tutorial http://linux2.arinet.org 21:26:01 up 1:13, 2.6.20-16-generic GNU/Linux Let's use OpenOffice. http://www.openoffice.org The real challenge of teaching is getting your students motivated to learn.
pgp7u9VwRU0OT.pgp
Description: PGP signature
-- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
