[Samba] samba 4 ad member - idmap = ad for machine accounts
Marco Gaiarin
gaio at sv.lnf.it
Tue Sep 19 10:39:38 UTC 2017
Mandi! L.P.H. van Belle via samba
In chel di` si favelave...
> I did loose a bit what the exact problem was here but i can to explain a bit here.
Probably i'm making some confusion here, but just stated by other
before, we are not speaking about SYSTEM user.
In microsoft windows client OS, if you try to connect to a share
with the local SYSTEM user, the client try first with the machine
account user and password, then try anonymously (then fail ;).
So, trying to restate the question more precisely: machine accounts are
ID_BOTH ''users'', so cannot have UID/GID assigned, or i can assign to
machine account a UID (and assign to 'Domain Computers' a GID)?
I think that if we add UID to machine account (and GID to Domain Computers
group), machine account access to share will work exactly as for RID
backend...
Better now? Thanks.
--
dott. Marco Gaiarin GNUPG Key ID: 240A3D66
Associazione ``La Nostra Famiglia'' http://www.lanostrafamiglia.it/
Polo FVG - Via della Bontà , 7 - 33078 - San Vito al Tagliamento (PN)
marco.gaiarin(at)lanostrafamiglia.it t +39-0434-842711 f +39-0434-842797
Dona il 5 PER MILLE a LA NOSTRA FAMIGLIA!
http://www.lanostrafamiglia.it/index.php/it/sostienici/5x1000
(cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)
More information about the samba
mailing list