[Samba] Avoiding uid conflicts between rfc2307 user/groups and computers
Rowland Penny
rpenny at samba.org
Mon Jan 15 16:16:03 UTC 2018
On Mon, 15 Jan 2018 16:08:11 +0100
Marco Gaiarin via samba <samba at lists.samba.org> wrote:
> Mandi! Rowland Penny via samba
> In chel di` si favelave...
>
> > 'SYSTEM' is a windows account, there is no concept of the 'SYSTEM'
> > account on Unix, this includes Samba.
>
> Again, i'm speaking more about machine account than LocalSYSTEM
> account...
>
>
> > Please read this:
> > https://wiki.samba.org/index.php/The_SYSTEM_Account
>
> Seems me perfectly coherent with what i'm saying, on detail:
>
> https://wiki.samba.org/index.php/The_SYSTEM_Account#How_the_SYSTEM_Account_Is_Used_by_a_Windows_Service
>
> works not only for the SysVOL share, but more generally; simply sysvol
> is a DC share, and on DC automatic mappings (via xID) happen, so
> machine account HAVE an UID...
>
>
> Simply, all share accessed by LocalSYSTEM user works like that... but
> on a DM with rfc2307 there's no automatic mappings, access using
> DOMAIN\machine$ does not works and anonymous/guest access are tried as
> fallback.
>
> Right?
>
'SYSTEM' != The machine account
Rowland
More information about the samba
mailing list