Understanding how you need to setup your DIT is one of the most important steps. Growth and changes on a poorly constructed DIT can create problems. So, if you are going to setup an LDAP tree to store information for your Samba users and groups, what is the bare minimums structure needed for a DIT and why? How many levels does one actually need? What is typical and prudent?
Once your DIT is built, what are the basic required entries needed in every LDAP account and what other requirements does Samba add to your basic LDAP entry? Where do you go to find this information?
Insert explanation of a poorly setup tree and how growth would negatively affect it.
Show a good basic structure
Discuss naming convention (DC Style structures) dc=example.lan -OR- o=example,c=US
Discuss where to go to find out what is going to be required for a minimum entry to have a valid samba domain login
- you must have at least one STRUCTURAL object class. (e.g. person, account, or whatever.)
- you must include an object class
- you will need all the attributes listed in its "MUST" part (if any).