[Samba] Joining a domain without using root or administrator

Buchan Milne bgmilne at cae.co.za
Tue Oct 14 09:41:17 GMT 2003

Hash: SHA1

> Date: Mon, 13 Oct 2003 11:00:15 +0200
> From: "J. Strohschnitter" <samba-ml at rwz.de>
> Subject: [Samba] Joining a domain without using root or administrator
> To: samba-liste <samba at lists.samba.org>
> Message-ID: <20031013110015.6a8a9c8e.samba-ml at rwz.de>
> Content-Type: text/plain; charset=US-ASCII
> HI there,
> is it possible to join a samba 2.2.8 domain with a win2000/xp client
> without using the local administrator account of windows and the root
> user of linux ?

For win2k/xp, you need:
- -to be logged in to the machine as a user with administrative rights to
change domain membership (not necessarily "Administrator").
- -to join the domain as a user with rights to change the machine's trust
account password. This means either you must use the root account (and
the root smbpasswd, but it can differ from root's unix password of
course), or if you are using LDAP you can set it up so that members of
the "domain admin group" can do so using their samba password.

> Just like adding a the trusted account via console on the linux-machine ?

Only with Windows NT4 clients.


- --
|--------------Another happy Mandrake Club member--------------|
Buchan Milne                Mechanical Engineer, Network Manager
Cellphone * Work            +27 82 472 2231 * +27 21 8828820x202
Stellenbosch Automotive Engineering         http://www.cae.co.za
GPG Key                   http://ranger.dnsalias.com/bgmilne.asc
1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org


Please click on http://www.cae.co.za/disclaimer.htm to read our
e-mail disclaimer or send an e-mail to info at cae.co.za for a copy.

More information about the samba mailing list