[Samba] Provisioning new AD Domain Controller
Mark Foley
mfoley at novatec-inc.com
Fri Jan 19 19:27:28 UTC 2024
I'm trying to figure out the user.group of my domain administrator account.
getent gives me:
# getent passwd Administrator
HPRS\administrator:*:0:100::/home/HPRS/administrator:/bin/false
If I chown a file:
chown HPRS\\administrator.100 thisfile
I get:
# ls -l thisfile
-rwxrwx---+ 1 root users 68973 2022-08-08 09:12 thisfile
If I do the same for normal domain users:
# chown HPRS\\mark.100 anotherfile
# ls - aontherfile
rwxr-xr-x+ 1 HPRS\mark users 164 2019-01-20 01:43 anotherfile
The latter shows the actual "HPRS\mark" as the user, but doing so for
Administrator shows root as the user.
Are HPRS\administrator and root synonyms?
On the other hand, the prvisioning step created /var/lib/samba/sysvol as:
# ls -ld /var/lib/samba/sysvol
drwxrwx---+ 3 root BUILTIN\administrators 4096 2024-01-18 21:51 /var/lib/samba/sysvol/
Why does getent for administrator give group 100 (users) but sysvol's group is
BUILTIN\administrators (gid 3000000)?
Should I change the group for "thisfile" to 3000000?
Is this all OK?
--Mark
More information about the samba
mailing list