Re: FreeBSD Active Directory Server
[EMAIL PROTECTED] wrote: Has anyone any experience trying to make FreeBSD an Active Directory Server? From my research and experiementation, I am under the impression that it is possible, but I have yet to come up with any articles where it has actual been done fully. it may be not relevant, or simply wrong, but IIRC, e-smith , a linux distrib that was started by mitel, ( http://www.e-smith.com/ ), has Samba *and* winXP sees it as a domain. I can't recall if it's an AD (I *think* it is, as the esmith server runs LDAP, iirc). The trick to let the client see the linux/samba server as an AD server was to disable some kind of encryption / cert related option in the client's registry. I'll see if i get hold of the colleague that worked on this and ask him the details. hope this is of some help. Beto ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD Active Directory Server
On Sun, 2005-07-31 at 08:43, Norberto Meijome wrote: [EMAIL PROTECTED] wrote: Has anyone any experience trying to make FreeBSD an Active Directory Server? From my research and experiementation, I am under the impression that it is possible, but I have yet to come up with any articles where it has actual been done fully. it may be not relevant, or simply wrong, but IIRC, e-smith , a linux distrib that was started by mitel, ( http://www.e-smith.com/ ), has Samba *and* winXP sees it as a domain. I can't recall if it's an AD (I *think* it is, as the esmith server runs LDAP, iirc). The trick to let the client see the linux/samba server as an AD server was to disable some kind of encryption / cert related option in the client's registry. I'll see if i get hold of the colleague that worked on this and ask him the details. hope this is of some help. Beto I've been following this tread with some interest as I am looking to replace a small network running W2k server with a BSD centred one. The Samba site - http://us2.samba.org/samba/ has some very useful information including Howtos and examples. There is however, a warning: At this time any appearance that Samba-3 is capable of acting as a domain controller in native ADS mode is limited and experimental in nature. This functionality should not be used until the Samba Team offers formal support for it. At such a time, the documentation will be revised to duly reflect all configuration and management requirements. Samba can act as a NT4-style domain controller in a Windows 2000/XP environment. However, there are certain compromises: * No machine policy files. * No Group Policy Objects. * No synchronously executed Active Directory logon scripts. * Can't use Active Directory management tools to manage users and machines. * Registry changes tattoo the main registry, while with Active Directory they do not leave permanent changes in effect. * Without Active Directory you cannot perform the function of exporting specific applications to specific users or groups. I am currently working on setting up the network, and one of the things that is quite clear is that full ADS functionality is not necessary. My view is that for a small network, roaming profiles, printer and file sharing is all that is really necessary. It looks like Samba has no problem with that. I think that the real problem with answering the original post is that the question is too general. There are a number of different examples dependant on the network requirements on the Samba site which could be taken as a start point. Rob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD Active Directory Server
Robert Slade wrote: I am currently working on setting up the network, and one of the things that is quite clear is that full ADS functionality is not necessary. My view is that for a small network, roaming profiles, printer and file sharing is all that is really necessary. It looks like Samba has no problem with that. Absolutely - most of the AD functionality isn't used that much, or is under-utilised. the e-smith server sets all these things up out of the box - really nicely done. If only it was BSD... ;) Beto ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
FreeBSD Active Directory Server
Has anyone any experience trying to make FreeBSD an Active Directory
Server? From my research and experiementation, I am under the impression
that it is possible, but I have yet to come up with any articles where it
has actual been done fully.
At the minute I have samba and ldap setup, the active directory dns
entries in (_ldap._tcp.dc._msdcs.{domain}). I am getting an error message
when trying to join my XP client to the domain - I think it is to do with
the ldap server. Any clues or points in the right direction would be
helpful - I am getting the impression that this may be a big project, if
it is even achieveable.
Cheers,
Martin
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD Active Directory Server
On Sat, 30 Jul 2005 20:03:56 +0800, [EMAIL PROTECTED] wrote:
Has anyone any experience trying to make FreeBSD an Active Directory
Server? From my research and experiementation, I am under the impression
that it is possible, but I have yet to come up with any articles where it
has actual been done fully.
At the minute I have samba and ldap setup, the active directory dns
entries in (_ldap._tcp.dc._msdcs.{domain}). I am getting an error message
when trying to join my XP client to the domain - I think it is to do with
the ldap server. Any clues or points in the right direction would be
helpful - I am getting the impression that this may be a big project, if
it is even achieveable.
Cheers,
Martin
Samba has experimental components which support ADS, but not fully. See
http://www.samba.org/ and the Official Samba Howto.
In my experience it isn't currently capable to have FreeBSD run as a fully
functioning ADS server.
If you absolutely need ADS you may simply need to have a Windows server.
If you need Windows Domain logons and ACLs etc... Samba+LDAP works
beautifully, I have this implemented at my work, the only reference I
needed was the Official Samba Howto. Using LDAP Account Manager also helps
:) There are no problems with machines connecting to the domains, or
domain logons, user profiles, or ACL's.
Daniel
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
