NUA for machine accounts

Tom Alsberg alsbergt at
Thu May 6 11:34:55 GMT 2004

If I understand correctly, NUA (No Unix Account) is gone from Samba
3.0 already.  (Any plans for it?  Idea for replacement?)

However I don't want each workstation to have a Unix account (or a
UID, for that matter).  Mapping them to user nobody in the simplest
way breaks because then they all have the same SID as well.

I want to do something, that will give all workstations the UID of
nobody, (and no local Unix record) but give each a unique SID.
Currently my idea is to look at the add account routines (in tdbsam)
and modify them to look for a new available SID, and give that to the
account.  That means some modifications in tdbsam, though, so I'm
trying to avoid it.

How can I do it as cleanly as possible in my external passdb module?

The principal question is - since the add_sam_account gets an already
filled structure, it will probably break if I change the SID there
(something previous would have already assumed a different SID), so
where should the change be?

  -- Tom

  Tom Alsberg - hacker (being the best description fitting this space)
  Web page:
DISCLAIMER:  The above message does not even necessarily represent what
my fingers have typed on the keyboard, save anything further.

More information about the samba-technical mailing list