-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Daniel Huntley wrote:
> netbios aliases = in your smb.conf
>
> Then setup the cname in DNS and point it to the correct
> A record.
Hmmm....This would work for NTLM but I don;t see how it
would work for Krb5. The client has to request a service
ticket for the cifs/${cname} principal. The AD KDC will
grant service tickets based on the servicePrincipalName
attribute for a computer (plus some thunking down...
e.g. s/cifs/host/).
The netbios alias trick will allow the server to advertise
its names in the network browsing elections and the cnames
handle cross subnet name resolution. But you still have
to worry about the client obtaining the ticket in the first
place.
Did I just misunderstand the original question?
cheers, jerry
=====================================================================
Samba ------- http://www.samba.org
Centeris ----------- http://www.centeris.com
"What man is a man who does not make the world better?" --Balian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org
iD8DBQFEsvrEIR7qMdg1EfYRAlUTAKCwqEiLfCuLT/6AH48YzIYAMVnrVQCeIITO
skAJG9fseLlstPJX7xEazMw=
=ucHM
-----END PGP SIGNATURE-----
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
