Topic: SME to get user accounts from WinNT

[brad]

Hi Everyone!

We have a Windows Server 2000 acting as a primary domain controler.  I am trying to get SME Server to handle only email and web traffic.

My problem is that I want SME to get all of the users and password from the NT server automatically (cron job?).

After searching to forums, I found the LazyAdmin Tool kit. But I am not sure if this is what I need.

I am fairly good as bash scripting and I don't mind reading man pages -- Does anyone know where I should be looking for more information?

thank-you
--Brad D.

[Boris]

Windows Server 2000 acting as a primary domain controller.

Did you mean Active Directory controller? There is no PDC, BDC on Windows 2000.
Version of Samba that installed on SME is not compatible with AD, so SAM synchronization will not work.
You may be better off redo your SME to act as PDC (and recreate all users on it), handle e-mail and web and then configure your Windows2000 server to be a member server of this new domain and be a file server or whatever you use it for.

[smeghead]

Sorry Boris, gotta disagree with you here.

Two options depending on the size of the site:

a) Small Site - use W2K box for AD, DNS, DHCP, setup a forwarder in DNS to your ISPs' DNS server(s), insert a host (A record) for those services on the SME box that you need to provide to the local network; under the Workgroup option tell SME to use the W2K box for WINS.

Setup email accounts on the SME seperately from W2K and maintain them seperately.

b) Larger site - as above to start but upgrade to Samba V3.x and use smbclient to sync users & passwords between both boxes.  Don't enable SME as a domain controller when you have a W2K box or newer running AD as there are still some issues with Samba 3 & the replication; have a good read at http://www.samba.org before any attempt at this.

I have been talking with James Price about updating his Samba V3 RPMS from the current V3 beta build to a recent stable version.  He will be doing this as time permits but don't hold ya breath.

HTH

[Yuri]

Hmm, question: can samba 3.x "pull" information from AD? I mean, would it be possible in some way to take list of users from AD and then automatically create those exact users and logins for SME? Maybe an idiot question sorry, but I'm just wondering... Thank you in advance...

[Boris]

Its all good in theory, but practicaly doesn't work yet.

[Reinhold]

lazyadmin is what the name says ...
a nifty toolset for (mostly) manual work  
...always comes handy so - GO FOR IT !

Other than that I have to agree with Boris.
If you stick with the 2000 server as your PDC in an SME environment you are headed for trouble.

my 2c
Reinhold

[brad]

Thanks for the posts!

My friend and I have had this stuff working on Suse Enterprise Server, using PAM and Kerberos

We will attempt to get it working on SME. If we (ever) do, I will post back.

--Brad