Find the answer to your Linux question:
Results 1 to 7 of 7
We have 4 Win2K servers and 5 win2K client machines. Could someone suggested a good book or online-doc that will help me set up a Linux box as our PDC? ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Linux User
    Join Date
    Nov 2002
    Posts
    420

    Linux Server as a PDC Documentation


    We have 4 Win2K servers and 5 win2K client machines. Could someone suggested a good book or online-doc that will help me set up a Linux box as our PDC? I'm fairly new to Linux.
    I want to migrate as many machines as possible to Linux and I thought the PDC would be a good start.

    Any suggestions would be grealty appreciated!

    TIA!

    BD

  2. #2

  3. #3
    Linux Enthusiast
    Join Date
    Jun 2002
    Location
    San Antonio
    Posts
    621
    samba can do some of this, but for a real PDC for a domain, not just a workgroup you need muuuuuch more crap. When windows switched from local login to a network-based token handling security paradigm they stole a lot of stuff from LDAP and Kerberos. If you can reverse engineer their LDAP/Kerberos implimentation (not as super-hard as it sounds). People have done it, but I think they are legally not allowed to say how or something? I don't know. I have tried it. Tough enough for me to not start to reverse engineer it. I thought I could get away with changing windows to talk like linux, I was wrong, I need to change linux to talk like windows, and that is only after I find out how windows talks. In general.
    I respectfully decline the invitation to join your delusion.

  4. #4
    Linux User
    Join Date
    Nov 2002
    Posts
    420
    First off, thank you Slacker for the slew of Info. Very detailed and I like it that way.

    Wassy, to give you an idea of what I'm working on: I have 5 servers running NT. I want to gradually move to linux on 3, possibly 4 servers. I thought the best start would be to convert my PDC to a Linux box.
    What pros and cons do you see? Thanks for your input and excellent help in the past.

    BD

  5. #5
    Linux Enthusiast
    Join Date
    Jun 2002
    Location
    San Antonio
    Posts
    621
    actually, if it is at all possible, it is probably better to convert ALL of them at once, if you want to do full authentication (user logins) via a PDC. You can do this in linux with OpenLDAP (and kerberos, but I haven't set that up yet). This is relatively painless to set up with RedHat. They have it so you can define your own LDAP server to authenticate with, and after some minor tweaking of /etc/ldap.conf, /etc/openldap/ldap.conf and /etc/nsswitch.conf it is on it's way. Of course in LFS it took days of fiddling with
    I respectfully decline the invitation to join your delusion.

  6. #6
    Linux Guru
    Join Date
    Oct 2001
    Location
    Täby, Sweden
    Posts
    7,578
    Doesn't windows have support for LDAP authentication? I'm pretty sure it has kerberos support, anyways. In that case the wisest would probably be to not have a SMB PDC, and you could still convert servers gradually.

  7. #7
    Linux Enthusiast
    Join Date
    Jun 2002
    Location
    San Antonio
    Posts
    621
    LDAP authentication off of proprietary windows-only ldap servers. Like I said, you have to hack the crap out of OpenLDAP/Kerberos to get it working.
    I respectfully decline the invitation to join your delusion.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •