[Zope] NT User Folder - No Domain support?
Ian Blenke
icblenke@2c2.com
Mon, 18 Oct 1999 19:11:16 -0400
After fighting with the "NT User Folder" product for quite a while,
I've run across a "feature" :)
Unless your NT server is a PDC/BDC for a Domain (so that the local SAM
is queried), it isn't possible to use NT User Folder for authentication
of users in the Domain.
I'm attempting to run Zope on an IIS server that is member server in a
Domain, but not a Domain Controller of any kind. The only way to limit
access seems to be by adding/deleting local users and putting them in
the ACL for HKLM/Software/DigitalCreations/.../Role
SO, I'm entertaining alternatives. How can I reference the users in
a remote Zope User Folder? It would be nice to be able to put the
"smb User Folder" on a Linux server running Zope, and merely XML-RPC
the folder lookups from the NT box to the Linux box.
Would it be possible to create a regular acl_users folder with the
preresiquite methods defined that would merely redirect the "simulated"
method to another Zope server?
Yes, it's a kludge. Yes it's sick and twisted.
The appropriate solution would be to put the Zope server on a BDC.
However, I'm not one for the "easy way out" :)
- Ian C. Blenke <icblenke@2c2.com> <ian@blenke.com>