Hey guys,
I am rebuilding my entire network (due to some unforeseen admin errors) and I was wondering if it's possible to have one server act as a Active Directory Domain Controller but permission files (via ACL's) on another box(NAS)that will also be part of the domain, these two boxes used to be one box but when my NAS failed (admin noob error) it took down my DC and everything, so I am trying to make the system more resilient to admin errors... (I'm teaching my cousin how to admin Linux systems)
This is the network layout of my hardware if that help get the idea of what I wish to achieve.
Code:
{Internet} - { Router } - { Firewall / Domain Controller / DHCP } - { Switch }
------------------ /|\------------
| -------------/ | \ |
| | / | \ |
| | / | \ |
| | {NAS} {TV1} {TV2} |
{PC2}{PC1} {WiFi}
I want the Domain Controller to be able to control the permissions on the NAS without mounting it to the Domain Controller. (I don't want to mount it because my network is setup to be 10/100 from the internet to the switch, however from the switch to the rest is all 100/1000 (gigabit) this was done by design due to the fact that my internet speed itself will never hit 100 megabits I have a 16 megabit line.