On Tue, 6/22/10, Colin Coe <[email protected]> wrote: > Actually, ThisWorkedForMe(tm) on > RHEL4 and 5 with the stand samba packages.
I think some of the issues are not related to Samba, but do the Forest and, more importantly, Domain level of Windows AD. First off, there is absolutely _no_ advantage, features or other considerations to a Windows 2008 Forest. It's the exact same as a Windows 2003 Forest, except it forces one to require all Windows 2008 Domains (and Windows Server 2008 Domain Controllers). Secondly, Windows 2008 Domains have few advantages over 2003 Domains, and most of them are administrative headaches that are self-defeating (like per-OU password policies and other things, that require all sorts of tedious non-sense). So there's little reason to use them. Windows 2008 Domains can be in Windows 2003 Forests, but not vice- versa. If you install Windows 2008 "out-of-the-box" and don't specify your Domain level to be 2003, you'll have issues with older releases of Samba trying to connect to a 2008 Domain level. Keep this in mind. Also remember to leverage the fact that you can have different Domain levels in a Forest. So even if everything is Windows Server 2008, and your Windows team is installing everything at the 2008 Domain level, remember you can install Windows Server 2008 at a 2003 Domain level, and talk to all other servers and exchange all credentials in the Forest, which is would be a 2003 Forest level. That controller could then work with even older Samba versions. Because, again, there is *0* advantage, security benefits, etc... to having a 2008 Forest level over a 2003 Forest level. I cannot stress this enough, and have had to educate Windows administrators on this over and over. -- Bryan J Smith Professional, Technical Annoyance Linked Profile: http://www.linkedin.com/in/bjsmith ------------------------------------------------------------ "Now if you own an automatic ... sell it! You are totally missing out on the coolest part of driving" -- Johnny O'Connell _______________________________________________ rhelv5-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/rhelv5-list
