[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Lias] XP Pro Clients on Samba PDC

To: "Phil Scarratt" <lias@draxsen.com>, "LIAS" <lias@lists.linux.org.au>
Subject: RE: [Lias] XP Pro Clients on Samba PDC
From: "Simon Bryan" <sbryan@olmc.nsw.edu.au>
Date: Tue Nov 26 18:20:02 2002
Importance: Normal
In-reply-to: <1038272689.3de2c8b172f01@server>
List-archive: <http://lists.linux.org.au/archives/lias/>
List-help: <mailto:lias-request@lists.linux.org.au?subject=help>
List-id: Linux in Australian Schools <lias.lists.linux.org.au>
List-post: <mailto:lias@lists.linux.org.au>
List-subscribe: <http://lists.linux.org.au/listinfo/lias>,<mailto:lias-request@lists.linux.org.au?subject=subscribe>
List-unsubscribe: <http://lists.linux.org.au/listinfo/lias>,<mailto:lias-request@lists.linux.org.au?subject=unsubscribe>
Sender: lias-admin@lists.linux.org.au

I just read that page, and at last setting Samba up as a PDC looks like I
could achieve it! Good reference. Thanks

> -----Original Message-----
> From: lias-admin@lists.linux.org.au
> [mailto:lias-admin@lists.linux.org.au]On Behalf Of Phil Scarratt
> Sent: Tue, 26. November 2002 12:05 PM
> To: LIAS
> Subject: [Lias] XP Pro Clients on Samba PDC
>
>
> Some information I found in the UNofficial Samba HowTo
> (http://hr.uoregon.edu/davidrl/samba.html) on XP Pro clients.
>
> Extract from there follows:
>
> ############## EXTRACT ##############
>
> Windows XP Clients
>
> To force Windows XP Professional clients to accept Samba as a PDC, use the
> built-in XP Group Policy editor (gpedit.msc) and locate the Computer
> Configuration\Windows Settings\Security Settings\Local
> Policies\Security Options
> branch. Make sure to disable the following policies:
>
> Domain Member: Digitally encrypt or sign secure channel data (always)
> Domain Member: Digitally sign secure channel data (when possible)
>
> Alternately, you can make the following change to the registry:
>
> [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters]
> "requiresignorseal"=dword:00000000
> "signsecurechannel"=dword:00000000
>
> To disable annoying Event Viewer notifications about "Automatic
> certificate
> enrollment for local system failed to contact the active
> directory" every eight
> hours, locate the Computer Configuration\Windows Settings\Security
> Settings\Public Key Policies branch and select "Do not enroll certificates
> automatically" under Autoenrollment Settings. Note that this
> policy won't be
> available until after the XP machine has joined the domain.
>
> If you'd like to use Roaming Profiles with Windows XP clients
> that have Service
> Pack 1 or later installed, use the built-in XP Group Policy
> editor (gpedit.msc)
> and locate the Computer Configuration\Administrative Templates\System\User
> Profiles branch. This is described in Microsoft's Technet
> Q327462. Make sure to
> enable the following policy:
>
> Do not check for user ownership of Roaming Profile Folders
>
> Alternately, you can make the following change to the registry:
>
> [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System]
> "CompatibleRUPSecurity"=dword:00000001
>
> Alternately as well, you can make the following addition to your
> smb.conf file:
>
> [profile]
>    profile acls = yes
>
> Windows XP Home Edition does not support logging into a Primary Domain
> Controller, so you'll have to use Windows XP Professional instead.
>
> ############## END EXTRACT ##############
>
> --
> Phil Scarratt
> IT Consultant
> 0403 531 271
>
> _______________________________________________
> lias mailing list
> lias@lists.linux.org.au
> http://lists.linux.org.au/listinfo/lias

References:
- [Lias] XP Pro Clients on Samba PDC
  - From: Phil Scarratt <lias@draxsen.com>

Prev by Date: Re: [Lias] Caldera RPMs on Lycoris
Next by Date: Re: [Lias] RE: Linux courses
Previous by thread: [Lias] XP Pro Clients on Samba PDC
Next by thread: RE: [Lias] XP Pro Clients on Samba PDC
Index(es):
- Date
- Thread