NUA for machine accounts
alsbergt at cs.huji.ac.il
Thu May 6 11:34:55 GMT 2004
If I understand correctly, NUA (No Unix Account) is gone from Samba
3.0 already. (Any plans for it? Idea for replacement?)
However I don't want each workstation to have a Unix account (or a
UID, for that matter). Mapping them to user nobody in the simplest
way breaks because then they all have the same SID as well.
I want to do something, that will give all workstations the UID of
nobody, (and no local Unix record) but give each a unique SID.
Currently my idea is to look at the add account routines (in tdbsam)
and modify them to look for a new available SID, and give that to the
account. That means some modifications in tdbsam, though, so I'm
trying to avoid it.
How can I do it as cleanly as possible in my external passdb module?
The principal question is - since the add_sam_account gets an already
filled structure, it will probably break if I change the SID there
(something previous would have already assumed a different SID), so
where should the change be?
Tom Alsberg - hacker (being the best description fitting this space)
Web page: http://www.cs.huji.ac.il/~alsbergt/
DISCLAIMER: The above message does not even necessarily represent what
my fingers have typed on the keyboard, save anything further.
More information about the samba-technical