[Samba] GPO backup/restore questions
Andrew Bartlett
abartlet at samba.org
Thu Sep 7 21:11:20 UTC 2023
On Thu, 2023-09-07 at 22:01 +0100, Rowland Penny via samba wrote:
> On Fri, 08 Sep 2023 08:45:24 +1200
> Andrew Bartlett via samba <
> samba at lists.samba.org
> > wrote:
>
> > On Thu, 2023-09-07 at 10:03 +0500, Anton Shevtsov via samba wrote:
> > >
> > >
> > > ~]$ kinit administrator
> > >
> > > Password for
> > > administrator at AAA.BBB
> > >
> > > :
> > >
> > > Warning: Your password will expire in 27 days on Чт 05 окт 2023
> > > 09:44:26
> > >
> > > [
> > > user at dc.aaa.bbb
> > >
> > > ~]$ klist
> > >
> > > Ticket cache: FILE:/tmp/krb5cc_500
>
> Just a question, why does Administrator have a ticket with the ID
> '500', I would expect /tmp/krb5cc_0
That is just the local unix UID on the client, Anton is connecting as
user administrator, but is practising good security hygine and not
running the commands as root (using account user with local id 500) to make the connection. This is best practice as root is not required as these commands don't use the local DB directly.
Andrew Bartlett
--
Andrew Bartlett (he/him) https://samba.org/~abartlet/
Samba Team Member (since 2001) https://samba.org
Samba Team Lead https://catalyst.net.nz/services/samba
Catalyst.Net Ltd
Proudly developing Samba for Catalyst.Net Ltd - a Catalyst IT group
company
Samba Development and Support: https://catalyst.net.nz/services/samba
Catalyst IT - Expert Open Source Solutions
More information about the samba
mailing list