Recently provided some assistance to a local IT company that exclusively uses Synology devices instead of servers for their clients. They approached us to create Group Policy objects based on this new feature of the Synology. The Synology Active Directory Server app is based on the Samba 4 Protocol, here are some details of available features:
Support for Windows RSAT
Support for TLS domain controller certification
Support for custom NetBIOS domain names
DNS auto registration
Support for single domain controllers
Account & Privileges
Group membership and policies
Roaming user profiles
Account single sign-on
Home folder support
Security & Access Control
Password reset via email
Password strength policies
Account lockout policies
Microsoft Windows 7 and above
Here are some basic take-aways from our experience creating these Group Policy Objects (GPO) on the Synology Active Directory Server.
Need to install Remote Server Administration Tools (RSAT) on the most up-to-date desktop or server OS version in the organization to allow for best compatibility with all earlier OSs when creating GPOs
Need to modify Synology Active Directory Server control panel Domain Options to allow Domain Admins to have admin access – without this you will get Access Denied every time a GPO is attempted to be added
Windows Servers, Active Directory and domains are not dead, they are just becoming a “Container” which makes them much cheaper for small businesses to adopt.
If your company is utilizing a Synology Network Attached Storage device and would like the functionality of an Active Directory domain, then contact us for assistance.