[Samba] status on samba trusts
- Date: Thu, 21 Feb 2019 13:21:15 +0100
- From: mj via samba <samba@xxxxxxxxxxxxxxx>
- Subject: [Samba] status on samba trusts
Having read the release notes on the status of trusts within samba, we
see for 4.9
> "improved support for trusted domains"
but we also always see these messages:
> "Both sides of the trust need to fully trust each other!"
> "DCs of domain A can grant domain admin rights in domain B"
What we would like to achieve is a one-way incoming trust with a (large)
external native windows AD domain, to make their users able to access
our (samba) domain member fileservers.
So, samba would be the "trusting (resource) domain", and the large
native windows AD domain would be the "trusted (account) domain".
We don't need access to the trusted domain groups and other info, and we
would not like remote "domain admins" to be become domain admins in our
Is the above possible with samba at the moment?
To unsubscribe from this list go to the following URL and read the