Samba as an Active Directory Domain Controller
I have used SAMBA as an authentication method in other applications and to provide file and print services to a Windows network. When I read that SAMBA4 could be used as a domain controller, I was intrigued. I originally set out to see if it could be done and found that it actually would set up as a domain controller. I was then determined to find other applications. The first was to use a SAMBA server as a Read Only Domain Controller. Originally this was a bit more difficult as I felt I had to break the service to make it act in Read-Only mode. As the server does not require extra services and required minimal resources, I felt that it would be more secure. I was in a situation where a customer did not want to add a Microsoft Server to their network; however, wanted to have the security offered by a central server. We installed a FreeBSD server with SAMBA4 and had them up and running. The customer manages the services from a Windows desktop, with the exception of DHCP which is managed through WEBMIN.
If you have not already set up a server and need some assistance, you may want to look at our document entitled FreeBSD from the menu on the left.
The following is a quick check list for setting up SAMBA 4 as an Active Directory Server;