Active Directory Domain with SAMBA or Other Tool
Solution 1:
Sorin-Mihai, I am the IT department for a private school. There I have a Windows domain using Samba4 on a Linux server. The school has about 70 Windows PCs which are joined to the domain.
Thanks to Samba4, I take advantage of centralized account management, Group Policy (and Group Policy Preferences), shared drives, redirected folders, and roaming profiles. It works well.
Some issues I've experienced, which may or may not be due to Samba4:
- No NTFS quota support. To do quotas, I create a separate logical volume (with LVM) for each share. I also set a maximum profile size with Group Policy, but that has been a PITA and I don't recommend it.
- Sometimes certain files (in particular Internet Explorer favorites) refuse to copy to the server during logoff, and a scary message pops up saying that a file could not be copied. I have not found a rhyme or reason to which files refuse to copy.
- Offline synchronization also refuses to copy some files. (Different from roaming profile issues.)
Solution 2:
I've not tried it, but one of Samba 4's goals is to be able to create an AD compatible domain controller, so theoretically yes.
According to the Wiki, it already has (as of today - 25 Jul 2012):
- support of the 'Active Directory' logon and administration protocols, supporting XP, Windows7 and OS X clients
- support for Group Policy definitions
- full NTFS semantics for sharing backends
- Internal LDAP server, with AD semantics
- Internal Kerberos server, including PAC support
- Bind9 integration for AD DNS support (with DLS)
- fully asynchronous internals
- flexible process models
- new RPC infrastructure (PIDL)
- Python support - used extensively for client and management tools
- generic security subsystem (GENSEC)
(among a few others which I did not include as they were not functionally related).
The first bullet point should satisfy what you're looking for.
(Sounds like a good evening project, might just play with that tonight).