If you plan to implement Samba on your network, be aware of the following security implications:
By default, Samba uses Novell Universal Password (UP) for authentication. Changing the default UP setting is not recommended.
Before using Samba, you might want to investigate the implications for using Universal Password as documented in Universal Password
in the NetIQ eDirectory Administration Guide.
Alternatively, you might choose to provide Windows users with file services using Client for Open Enterprise Server software or NetStorage. For more information, see File Services
in the OES 2018: Planning and Implementation Guide.
For more information on Samba password options, see Section 11.2, Samba Passwords.
Samba uses the POSIX/Linux security model. Client for Open Enterprise Server software and other NCP access methods use the NetWare security model.
Providing similar access priviledges for both Samba users and Client for Open Enterprise Server (NCP) users, requires additional steps as explained in Aligning NCP and POSIX File Access Rights
in the OES 2018: Planning and Implementation Guide.