AD & DNS??

[Michael E. Hanson]

NetBIOS works, but its not required unless you are running Win9x, =
Exchange, or some other app that requires it.  And yes, LanMan =
authentication operates, but its not recommended, even in a mixed  =
environment with *nix.  Win2003 support Kerberos, which is more secure =
and has been supported by *nix for years.  With the built-in support for =
Unix File and Print sharing, Win 2003 Server has finally joined the =
modern operating system.  Unless you have a requirement for Samba =
support don't let *nix drive you to keeping WINS and NetBIOS around.

Win2003, Win2K, and WinXP machines will only announce themselves to =
NetBIOS if you configure them to do so, by default they live in a TCP/IP =
world, not a NetBIOS world.

----- Original Message -----=20
From: "Chris Cox" <chris_cox at stercomm.com>
To: <comp-protocols-dns-bind at isc.org>
Sent: Monday, January 19, 2004 9:58 AM
Subject: Re: AD & DNS??


Michael E. Hanson wrote:
...snip...
> BTW, with the advent of AD, the Microsoft domain is NOT a NetBIOS =3D
> namespace (unless the admin chooses to make it so by bringing up a =
WINS =3D
> server), it is a TCP/IP namespace relying on DNS as its primary =3D
> name/address resolution service.

Well.. there's not a global collector and central source of resolution
(WINS), but obviously NetBIOS continues to work and all machines =
announce
themselves and respond to NetBIOS as usual.  Probably won't see this go
away for quite some time.  LANMAN authentication continues to operate
as well... though one would think it would also go away.

Both of these things are very good to have arounnd IMHO from a *ix
integration perpective.