[Samba] why the domain administrator has to has uid 0?

TAKAHASHI Motonobu monyo at monyo.com
Mon Jan 10 05:58:28 MST 2011

>> Hi All,
>> Anybody could tell me why the user who is able to join a machine into
>> the domain has to has uid=0. is it possible to has more
>> administrators?

2011/1/10 William E Jojo <w.jojo at hvcc.edu>:
> Look at:
> net rpc rights grant username SeMachineAccountPrivilege
> This will add users to the account_policy.tdb file with join rights in that domain. When you upgrade or move to another machine, be sure to bring this file along.

If you do not want to use user rights,

  admin users = admin, admin2, ...

or simply

  admin users = admin, admin2, ...

should work.

TAKAHASHI Motonobu <monyo at samba.gr.jp>

More information about the samba mailing list