[Samba] How Is Administrator Treated?

[Les Bell]

I have a couple of Samba 2.2 servers, in different locations, configured as
NT Domain Controllers, but I'm experiencing some problems with logging on
to the domains as Administrator in order to perform some administration
tasks, such as configuring antivirus software on workstations. I won't go
into the details here; I think the basic problem is my lack of
understanding of how the Administrator account is treated. Ordinary user
accounts work fine as far as I can see, but then, ordinary users shouldn't
be able to do a bunch of things, anyway.

First: I created an Administrator account in Linux, and it wound up (here)
with a UID/GID of 604. That's just an ordinary user ID, so what makes it
special as far as the domain is concerned? Should the Administrator account
have a UID/GID of 0? If I try to run USRMGR.EXE or SRVMGR.EXE I can see
things, but can't change them ("Access is denied").

Second, what about Windows SID's? Administrator should be S-1-5-domain-500;
but if I log on as Administrator at an NT or Win2K workstation and look in
the registry, I can't see that SID in HKEY_USERS. How is this set up in the
Adminstrator account profile (roaming profiles are in use)?

I'm pretty sure that once I "grok" this stuff all the other minor system
management problems will fall into place. Thanks in advance for any
responses.

Best,

--- Les Bell, RHCE, CISSP
[http://www.lesbell.com.au]