Mac OSX and Windows 2000 Active Directory

[Adrian Mink]

Using samba to allow unix systems to authenticate against active directory.
(I don't necessarily recommend doing this, but sometimes you have to do
things
you don't want to!)

http://online.securityfocus.com/infocus/1563

Mapping drives to windows shares with samba works exactly the same way
with AD as it did under NT4. Some items to keep in mind.

1: Samba does not support Windows Kerberos or NTLM V2. You have to support
either lanman or NTLM authentication.
(Windows will by default, but if you have aggressive security people they
may have disabled them.)

2: Joining the windows domain will work as well, but the computer account
must be created as pre-windows 2000 compatible.

3: You want to use (at least) the 2.2.x versions of Samba.

For much more good info on this, go here:

http://www.google.com/search?q=samba+howto

Good luck!

Adrian

----- Original Message -----
From: "Kevin Brown" <kevin_brown@qwest.net>
To: <plug-discuss@lists.plug.phoenix.az.us>
Sent: Wednesday, October 23, 2002 7:41 PM
Subject: Mac OSX and Windows 2000 Active Directory


> I recently obtained full-time employment and one of the tasks that I'm
faced
> with is getting Mac OSX to work with a Windows 2000 Active Directory
Domain.
> OSX ships with Samba 2.2.3a, which I believe allows it to be able to work
with
> the older NT4 domains.
>
> The biggest problem I'm looking at right now is getting the Mac to
automount
> shares from the AD servers when the user logs in and quite possibly using
the AD
> servers to authenticate the user in the first place.  I know I can get
normal
> Windows Shares statically mounted via fstab entries, but don't know about
Win2k
> AD domains/shares.
>
> Anyone have pointers to any docs about doing this?
> -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change  you mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>