[Samba] Method for joining machines to PDC without using root

___cliff rayman___ cliff at genwax.com
Tue Dec 24 05:09:01 GMT 2002


John H Terpstra wrote:

>On Mon, 23 Dec 2002, ___cliff rayman___ wrote:
>  
>
>
>You have your verification. Got a better suggestion? Send us your patches
>and we will look at them.
>
i know, suggestions are cheap, good patches are like diamonds :-)

if the problem is smbpasswd permissions, perhaps it can be set to mode
660 instead of 600, and with a group something like domainadd.  any
user with domainadd group, can add a windows box to the domain.

users can be created in this special group that could do nothing else
but add windows boxes to the domain.  no logins - no share permissions
etc..

i did look at the code, but it is way over my head without several hundred
hours of study.  :-)

>
>  
>
>>my only other option would be to issue a:
>>smbpasswd root
>>
>>make a temporary password, talk someone into joining
>>a domain on the phone, immediately change the password
>>back so it is secure.
>>    
>>
>
>No different from NT/2K really.
>
i assumed that this was a samba requirement and not a windows requirement.

-- 
___cliff rayman___cliff at genwax.com___http://www.genwax.com/






More information about the samba mailing list