LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 01-28-2005, 10:42 AM   #1
Passive
Member
 
Registered: Mar 2002
Posts: 51

Rep: Reputation: 15
Arrow Using Linux as a domain controller for a W2K3 domain.


Hi All,

At my office, we have a small Windows 2003 domain. Locally, we use very few network services. The domain master is also the file, DHCP, and DNS servers.
We also have a second server, running Redhat and hosted offsite, that holds our website, email, and some other things. I would like to find a way to unify the user accounts on these machines, so users have a single username and password across all of our network services.
I imagine there would be significant security concerns related to actually doing the authentication on our remote server?
Related to that, we have a third, local Redhat server, and I was thinking perhaps if we could synchronize our users between the local and remote linux servers, then we could use the local linux as a domain controller.

This is all very abstract right now, and I imagine is a fairly large undertaking. Any advice or pointers would be appreciated.

Thanks.
 
Old 01-28-2005, 04:51 PM   #2
cowanrl
Member
 
Registered: Dec 2004
Location: Western Pennsylvania, USA
Distribution: Red Hat
Posts: 150

Rep: Reputation: 15
I'm a little unsure on how many locations you are talking about. Are "at my office" and "locally" the same place or are they 2 separate locations?

If "locally" is a different location than "at my office", how are the machines at "locally" connecting to "at my office"? Do they authenticate to the domain controller?

What kind of connection, if any, do you have between the location where the offsite Red Hat server hosting web/e-mail and the office?
 
Old 01-28-2005, 05:39 PM   #3
Passive
Member
 
Registered: Mar 2002
Posts: 51

Original Poster
Rep: Reputation: 15
At the office and locally are the same place.

Currently, all authentication(for local network services) is done by a Win2K3 domain controller.

The offsite server is accessed over the internet.
 
Old 01-28-2005, 06:01 PM   #4
cowanrl
Member
 
Registered: Dec 2004
Location: Western Pennsylvania, USA
Distribution: Red Hat
Posts: 150

Rep: Reputation: 15
A Samba server can not function as a domain controller in a Win2k3 AD domain.

Since the 3rd local Red Hat server is at the same location as the AD domain controller, the best thing to do is to make it a member server of the AD domain. You can then use winbind so that there is no need to create any local user accounts on the Red Hat server. All authentication to the Red Hat server would be done by the AD domain controller.

Here's some links on how to do that:

http://www.justlinux.com/forum/showt...hreadid=118920

http://www.justlinux.com/forum/showt...hreadid=118288

http://www.justlinux.com/forum/showt...hreadid=118512

If you can do it, using the ADS security mode would be the most secure.

Unless you have a secure VPN connection to your off site Web server, I wouldn't recommend trying to make it a member of your AD domain. You would have to open up the authentication ports to the Internet which would create a severe security risk.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Linux domain controller??? paddyjoy Linux - Newbie 2 09-16-2005 03:34 AM
linux domain controller Red Squirrel Linux - Networking 1 05-23-2005 01:26 AM
Linux as a Domain Controller nedian123 Red Hat 11 03-24-2005 11:47 PM
Linux Domain Controller thesystem Linux - General 1 11-18-2004 06:25 PM
Do you need a Domain controller in a NIS domain? synthol6 AIX 3 07-01-2004 12:20 PM


All times are GMT -5. The time now is 01:31 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration