In the future I intend to port the fileserver user access controls over to an LDAP backend, but right now I need to limit the complexity of the system to speed up deployment. Currently there will only be 8 members gaining access, and there already exists a certain level of trust with the users. I have base or reasonable expectation that they will not intentionally abuse the system, but do not
discount the possibility.
Nope no AD here
This is a home network that I am trying to extend into an Emergency Communications Group Central Command including data center
Completely volunteer, completely no money coming in, completely my home network and my home equipment, so completely my dollar buying machines, hardware, and my time installing and maintaining them
Not to mention AD and LDAP are both very weak points for me: I dealt BRIEFLY with Microsoft AD in school, all of about 1 week.
The initial deployment will be done using VPN and linux / samba UAC's but eventually yes I would prefer that everyone, including remote users, have a user on their system that logs into this domain (I will need to create a domain controller) and function under the LDAP setup here.
Given my limited experience with AD and my complete lack of experience with domain controllers, if you can suggest some light reading (or heaving reading is fine too) I'm all game to do some learning...