I'd like to point out that I have erected an SEP field around both my
environment and security at my current place of employment :)
Therefore, all discussion of security is strictly theoretical wrt
my current real life needs. (In other words, I'm interested in the
security implications from
While Samba can authenticate from a NT Domain Server. But I don't know of
anyway to get a Linux/Unix login from a NT Domain without using a third
party solution.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 21, 2002 4:38 PM
To: [EMAIL
I've used a pam module called pam_smb for this in the past. It has worked quite well
for me. I used it for a Linux mail server on a Windows 2000 domain, but it was
designed for NT domains.
It allows anything that is PAMable on the Linux box to authenticate against the DC,
including
On Tue, 21 May 2002, at 4:37pm, [EMAIL PROTECTED] wrote:
What I'd *like* to do is set up the environment so that all the systems
authenticate against a central LDAP or NT PDC server.
LDAP would use the OpenLDAP PAM functionality. Supposedly, this works
like NIS. That is about as much as I
On Tue, 21 May 2002, at 4:58pm, Joseph E. Mainusch wrote:
... Windows 2000 domain, but it was designed for NT domains.
Every Windows 2000 domain is also an NT domain. Active Directory is
basically LDAP bolted on to NT domains. There are a few base architecture
improvements, and the Kerberos
Paul,
I believe the some combination of pam_smb_auth and windbindd
(nss_winbind) can serve your purpose. As someone else said, though, I
don't know about the security of such a setup. Unlike one poster wrote
(forgot who), however, I *think* that you do need a machine account on
the PDC in
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
At some point hitherto, Joseph E. Mainusch hath spake thusly:
It is a little bit crude, and I don't know that I would trust it
100% in a really security sensitive environment, but it does work.
In a really security-sensitive environment, I
On 21 May 2002, at 6:01pm, Paul Iadonisi wrote:
Unlike one poster wrote (forgot who), however, I *think* that you do need
a machine account on the PDC in order to even join the domain.
Um, not exactly. When one speaks of joining a computer to a domain,
what they are actually describing is
Paul Lussier wrote:
Hi all,
Anyone know if NT can authenticate against NIS? I need to set up a new NT
domain which requires inter-domain trusts, which Samba doesn't yet support. I
don't want to have to create a whole bunch of NT accounts for all my users,
and then have to keep 2 sets of
In a message dated: Thu, 17 Feb 2000 10:46:35 GMT
Andrew Gaunt said:
There is something called 'nisgina' which is available over the net
and can do this. Also, SAMBA is supposed to be able to some kind
of PC authentication. I'll be looking into the SAMBA option more closely
myself. I have a
PROTECTED]
Subject: Re: NT authentication against NIS?
References: [EMAIL PROTECTED] [EMAIL PROTECTED]
[EMAIL PROTECTED]
Paul Lussier wrote:
Samba doesn't do inter-domain trusts yet, which is what I need. Is the
nisgina stuff easy to set up?
--
Seeya,
Paul
I'm attaching a tarball
11 matches
Mail list logo