Handling DNS in a Single Active Directory Domain Controller Environment
-
@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@brrabill said in Handling DNS in a Single Active Directory Domain Controller Environment:
Just think of what a different discussion this would be if MS just allowed you to spin up a free AD server, that just had AD, like Hyper-V Server.
Just imagine if a free AD server existed out there!
Oh wait...
I'm guessing you mean Samba? Or am I missing something?
Yes, Samba will do AD for free. And is available on many platforms.
-
I believe the forest level with Samba can only be 2008R2 though.
-
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
I believe the forest level with Samba can only be 2008R2 though.
Sure, but what does that really affect? Forest level limitation is nothing like an old code limitation. Nothing wrong with using a 2008 R2 Forest level.
-
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
I believe the forest level with Samba can only be 2008R2 though.
Sure, but what does that really affect? Forest level limitation is nothing like an old code limitation. Nothing wrong with using a 2008 R2 Forest level.
If I am reading this correctly, I believe Samba 4.4 and higher can go to 2012 R2.
https://wiki.samba.org/index.php/Raising_the_Functional_Levels
-
@scottalanmiller Very true, nothing wrong at all in using. believe there was some improvements to DFS-R in higher Forrest levels, but if your obviously using Samba in your environment you probably would not be using this role anyway.
-
@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
I believe the forest level with Samba can only be 2008R2 though.
Sure, but what does that really affect? Forest level limitation is nothing like an old code limitation. Nothing wrong with using a 2008 R2 Forest level.
If I am reading this correctly, I believe Samba 4.4 and higher can go to 2012 R2.
https://wiki.samba.org/index.php/Raising_the_Functional_Levels
Rumor is, but I'm not sure that 4.4 is widely available yet?
-
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller Very true, nothing wrong at all in using. believe there was some improvements to DFS-R in higher Forrest levels, but if your obviously using Samba in your environment you probably would not be using this role anyway.
Right, generally not.
-
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
I believe the forest level with Samba can only be 2008R2 though.
Sure, but what does that really affect? Forest level limitation is nothing like an old code limitation. Nothing wrong with using a 2008 R2 Forest level.
If I am reading this correctly, I believe Samba 4.4 and higher can go to 2012 R2.
https://wiki.samba.org/index.php/Raising_the_Functional_Levels
Rumor is, but I'm not sure that 4.4 is widely available yet?
Even newer versions =).
Centos 7.5 is using 4.7.1
Fedora 28 is using 4.8.5 -
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
I believe the forest level with Samba can only be 2008R2 though.
Sure, but what does that really affect? Forest level limitation is nothing like an old code limitation. Nothing wrong with using a 2008 R2 Forest level.
If I am reading this correctly, I believe Samba 4.4 and higher can go to 2012 R2.
https://wiki.samba.org/index.php/Raising_the_Functional_Levels
Rumor is, but I'm not sure that 4.4 is widely available yet?
smbstatus on Ubuntu 18.1 shows Samba 4.7.6.
-
@romo said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
I believe the forest level with Samba can only be 2008R2 though.
Sure, but what does that really affect? Forest level limitation is nothing like an old code limitation. Nothing wrong with using a 2008 R2 Forest level.
If I am reading this correctly, I believe Samba 4.4 and higher can go to 2012 R2.
https://wiki.samba.org/index.php/Raising_the_Functional_Levels
Rumor is, but I'm not sure that 4.4 is widely available yet?
Even newer versions =).
Centos 7.5 is using 4.7.1
Fedora 28 is using 4.8.5Oh wow, nevermind, lol.
-
@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
I believe the forest level with Samba can only be 2008R2 though.
Sure, but what does that really affect? Forest level limitation is nothing like an old code limitation. Nothing wrong with using a 2008 R2 Forest level.
If I am reading this correctly, I believe Samba 4.4 and higher can go to 2012 R2.
https://wiki.samba.org/index.php/Raising_the_Functional_Levels
Rumor is, but I'm not sure that 4.4 is widely available yet?
smbstatus on Ubuntu 18.1 shows Samba 4.7.6.
Is that for 18.04 or 18.10, the latter released a few days ago (I need to go update some systems.)
-
yep, using 18.04.1 here...
-
So likely a bit newer now.
-
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:
@scottalanmiller said in Handling DNS in a Single Active Directory Domain Controller Environment:
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
I believe the forest level with Samba can only be 2008R2 though.
Sure, but what does that really affect? Forest level limitation is nothing like an old code limitation. Nothing wrong with using a 2008 R2 Forest level.
If I am reading this correctly, I believe Samba 4.4 and higher can go to 2012 R2.
https://wiki.samba.org/index.php/Raising_the_Functional_Levels
Rumor is, but I'm not sure that 4.4 is widely available yet?
smbstatus on Ubuntu 18.1 shows Samba 4.7.6.
Is that for 18.04 or 18.10, the latter released a few days ago (I need to go update some systems.)
My bad, it is 18.04.1
-
I hadn't even realized it was out. I suppose I was out of town when it happened. But I feel like there was a lack of fanfare going on. I had heard of ElementaryOS going to 5.0 without hearing that Ubuntu 18.10 was out!
-
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
I believe the forest level with Samba can only be 2008R2 though.
If you're not using Windows AD, what's it matter?
-
@obsolesce said in Handling DNS in a Single Active Directory Domain Controller Environment:
@stuartjordan said in Handling DNS in a Single Active Directory Domain Controller Environment:
I believe the forest level with Samba can only be 2008R2 though.
If you're not using Windows AD, what's it matter?
If he's merging in DFS, it might. It's rare to do, but could matter.
-
-
So 2012 R2 benefits...
- KDC support for claims. This is a real benefit, but pretty "meh".
- New authentication policies. Whoop tee do.
- New authentication policy silos. Even more whoop tee do.
That's it. Two new versions and that is all of the improvements.
-
@scottalanmiller hahaha, that's what I wanted to check....I'm sure DFS improvements were there somewhere, not sure what level though.