[Samba] Administrator is Root
ryan punt
rpunt at good-sam.com
Thu Jan 18 14:36:19 GMT 2007
> I just got Samba + LDAP up and running as a PDC. If I list the users in
> the LDAP directory with pdbedit -L I see:
>
> root:0:test
> nobody:99:nobody
> aster$:1001:Computer
> toast$:1002:TOAST$
> fordprefect:1003:Test Account
>
> Shouldn't there be an Administrator account and no root? I don't want my
> Linux root account even remotely confused or associated with a
> Samba/LDAP account. Any ideas?
It depends on how you configured your LDAP.
After Samba 3.0.14 you can have a normal user account with
Domain Administrator powers, which includes adding machines to the
domain and other privileges, using 'net groupmap'.
So you can an account as the LDAP administrator, another
account as your Samba Administrator and your regular root account.
It's up to you. ;)
*---------
But don't you need a Samba account with UID=0 to assign privileges in the first place?
Ryan
-------------- next part --------------
-------------------------------------------------
This email transmission and any documents, files or previous
email messages attached to it may contain information that is
confidential or legally privileged. If you are not the intended
recipient, you are hereby notified that any disclosure, copying,
printing, distributing or use of this transmission is strictly
prohibited. If you have received this transmission in error,
please immediately notify the sender by telephone or return
email and delete the original transmission and its attachments
without reading or saving in any manner.
The Evangelical Lutheran Good Samaritan Society.
---------------------------------------------------------
More information about the samba
mailing list