Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Planning LDAP SAMBA Domain Controller

Posted on 2004-04-14
Last Modified: 2013-12-15
I am putting together a bid which will include a comparison of using Windows 2003 Server as a primary domain controller, versus some distro (thinking Slackware or Debian) running Samba.  My understanding is:  if I sacrifice X and all the other bells and whistles that create overhead, I could not only save the client on licensing by using linux, but could also save them money by building a more practical smaller server.

- Are my assumptions correct?
- Should I use a different distro (keep in mind I want the pdc stripped down)
- With 20 workstations, what type of hardware (SCSI Controller? RAM? RAID?) would be appropriate for the pdc?
- Are there any resources on the web that may help 'clear up the fog'?

thanks in advance!!!
Question by:etherbreeze
LVL 40

Accepted Solution

jlevie earned 250 total points
ID: 10830708
Since this is supposed to compete with a commercial, supported, OS I question your choice of distributions. I'd pick RedHat Enterprise Linux or SuSE because they are commercial distributions and have an established support service.

> keep in mind I want the pdc stripped down

There are advantages to have X installed on the server. You don't have to set the system up to boot to a GUI login, but a number of tasks are much easier in an X environment. Being able to run X when needed (via startx) allows you to have the best of both worlds. When the Gui isn't running more resources are available for Samba, and when needed you simply use 'startx' and have the Gui environment.

> With 20 workstations, what type of hardware

It isn't the number of workstations, but what they'll be doing that matters. As stated there isn't enough information to suggest a platform. Could you elaborate?

Author Comment

ID: 10832447
great suggestions!

the client is basically going to have 20 - 25 client machines that will authenticate against the pdc - i'm also hoping to point two other sites with a few machines at the pdc through a vpn server.  there will also be an exchange server with accounts for each employee, web server, mysql server and vpn server on the network.  the web server will (eventually) host several applications that each client workstation will access.  permissions for the different features of the application will be set using the pdc -

what other information might you need to determine the right distro and hardware to use?
could i run the vpn / pdc from the same machine?  my current design has each server seperate -
LVL 36

Assisted Solution

grblades earned 250 total points
ID: 11003951
What are you considering to use as a file server?
As you are looking at a Linux PDC I assume you are going to runa Linux fileserver using Samba?

My suggestion would be to use a Suse distribution. Suse comes with the XFS file system as an option while installing and this gives you the benefit of Posix ACL's on the file system. Although this wont give you the full range of access permissions you get on a windows file server it is still a major advantage over standard unix type file permissions.
I don't know whether to recomend a server version of SUSE or SUSE Pro 9 which has just been released. SUSE Pro 9 has the new version 3 of samba which would be an advantage but on the other hand the server version has a much longer lifespan and better support. The new version of the server version is not out until August time I believe.

Instead of Exchange I would also have a look at Suse Open Exchange. I am getting an evaluation version in a few weeks with the intention of switching over to it for our corporate email system. There is an online demo of the web interface on the Suse website.

With regard to VPN I have found Linux's implementation to be a bit immature. If you want to run it on a Unix box I would suggest NetBSD as VPN is more mature on that platform and lots of people use it. VPN is best located on the same hardware as the firewall/NAT. Personally I would go for a hardware solution such as a Cisco PIX. You can get a 506E for the same price as a reasonable desktop PC which will be good enough for 15 VPN sessions and bandwidth up to a few Mb/s.

Featured Post

Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Daily system administration tasks often require administrators to connect remote systems. But allowing these remote systems to accept passwords makes these systems vulnerable to the risk of brute-force password guessing attacks. Furthermore there ar…
This is the error message I got (CODE) Error caused by incompatible libmp3lame 3.98-2 with ffmpeg I've googled this error message and found out sometimes it attaches this note "can be treated with downgrade libmp3lame to version 3.97 or 3.98" …
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question