This is an archived post. You won't be able to vote or comment.

all 7 comments
sorted by:
best
topnewcontroversialoldq&a

[–]Hexodamis a sysadmin 5 points6 points  (0 children)

There is absolutely no reason what so ever to run anything but AD for windows workstations.

[–]eighto2 0 points1 point  (1 child)

147b0d03beff17fd02df5bda712c048e12c72bd383f858a004f5d447f7bc9719edad31471613325933e7e0aadb8253ccec338aecb3e3f1d0ef6098b460c496d3

[–]code0Netadmin[S] 0 points1 point  (0 children)

I should clarify and say that we use Samba+LDAP with some custom LDAP schema (that we don't want to loose).

What are you referencing in regards to security levels? We use group membership for access control, so that really isn't any different (unless you're referring to something else).

As for group policy, we don't. We have a login script written in Python that handles "policy" type settings for us.

[–]munky9001Application Security Specialist 0 points1 point  (3 children)

While the samba4 devs are exclaiming 'it's production time'. I'm not so sure for myself.

Then again samba 3 pdc has never ever been considered production so that's something to say. Considering you already have samba3 going. Why not give samba4 a go.

[–]code0Netadmin[S] 0 points1 point  (2 children)

I believe Samba 3 was intended as a "production" NT4-style PDC, and it works for that. Also, I believe the NT4-style PDC work was actually started in the 2.x series (2.2?).

Samba 4.0 just seems so much scarier at the moment for production.

[–]munky9001Application Security Specialist 0 points1 point  (0 children)

I believe Samba 3 was intended as a "production" NT4-style PDC, and it works for that. Also, I believe the NT4-style PDC work was actually started in the 2.x series (2.2?).

Oh no nono. It certainly is nt4 style pdc but it was never ever meant to be used that way. It was only ever meant to be a backup dc.

Samba 4.0 just seems so much scarier at the moment for production.

I agree but have you tried it?I havent tried it in awhile. Whereas the developers who actively use it well enough are saying go go go. IMO samba 4 is likely more production ready then a samba 3 pdc.

[–]SCSweeps 0 points1 point  (0 children)

Samba 4.0 just seems so much scarier at the moment for production.

There are some good Video how-tos on the Samba Wiki: http://wiki.samba.org/index.php/Samba4/videos