[Samba] Joining a samba domain on WinXP without a root login?
Gerald (Jerry) Carter
jerry at samba.org
Tue Jan 11 20:55:15 GMT 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hunter Rognstad wrote:
| I've been able to succesfully join XP boxes to the samba domain on samba
| 2.2.3a (yes, I know it's old), registering the machine name and so
| forth, as many guides and so forth have shown online. However, it
| requires entering root's smbpasswd when joining the domain -- and I'd
| rather not have a Windows machine with any sort of remotely related root
| access to our servers, especially having the capability of a root login.
|
| I'm curious, since SAMBA is its own project and should be able to work
| around it, if it's possible to join the domain without allowing the user
| root to log into it. I've tried having invalid users = root, and
| experimented with the domain admin group and admin users settings to
| work around it, but to no avail. I've googled for a solution, and found
| no suggestions.
I posted an experimental patch last week that allows domains admins
(defined by the group mapping) to join machines to the domain.
It's at http://samba.org/~jerry/patches/post-3.0.10/
I'm reworking things now to use a privliege based model (based on
code by Simo Sorce) so it will change before 3.0.11 I'm sure.
cheers, jerry
=====================================================================
Alleviating the pain of Windows(tm) ------- http://www.samba.org
GnuPG Key ----- http://www.plainjoe.org/gpg_public.asc
"I never saved anything for the swim back." Ethan Hawk in Gattaca
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFB5D0zIR7qMdg1EfYRAnaGAKCOeASLx1d2T2N+h8pKoLU/TB15WwCgtlQY
VF0M7tX7v0P5eXu33p022ao=
=Esrd
-----END PGP SIGNATURE-----
More information about the samba
mailing list