NAVIGATION
CATEGORIES
REFERRENCE
LINKS
about the new built-in groups
2 answers - 402 bytes -
I recently upgraded my Samba install and happily noticed that it
automagically created groups for BUILT-IN/Administrators and
BUILT-IN/Users in my LDAP user store.
Can I use these groups like I would normally use them on other systems?
Can I use them as primary groups for my various users and whatnot? Can I
map the Administrators group to my "root" Posix group? etc?
Thanks!No.1 | | 871 bytes |
| 
Tue, 2006-09-19 at 12:44 -0400, Eric A. Hall wrote:
I recently upgraded my Samba install and happily noticed that it
automagically created groups for BUILT-IN/Administrators and
BUILT-IN/Users in my LDAP user store.
Can I use these groups like I would normally use them on other systems?
Can I use them as primary groups for my various users and whatnot? Can I
map the Administrators group to my "root" Posix group? etc?
No, you cannot use them as primary groups, Windows requires that the
primary groups is a domain group, builtin groups are not domain groups.
The Administrators group can be used if you want to give administrative
privileges locally (builtin groups do not have any effect on other
machines) without giving admin privs on other machines as it would
happen by adding a user to the Domain Admins.
Simo.No.2 | | 1125 bytes |
| 9/20/2006 10:35 AM, Simo Sorce wrote:
Tue, 2006-09-19 at 12:44 -0400, Eric A. Hall wrote:
>I recently upgraded my Samba install and happily noticed that it
>automagically created groups for BUILT-IN/Administrators and
>BUILT-IN/Users in my LDAP user store.
>>
>Can I use these groups like I would normally use them on other systems?
>Can I use them as primary groups for my various users and whatnot? Can I
>map the Administrators group to my "root" Posix group? etc?
No, you cannot use them as primary groups, Windows requires that the
primary groups is a domain group, builtin groups are not domain groups.
Yeah okay, they are local groups not network groups.
I can add (eg) the Domain Users group to the local Users group, and assign
my ACLs and whatnot to the latter, correct?
I just want to make sure that these aren't handled special by Samba. They
used to be reserved group names and I want to make sure they are
real/normal groups now (apart from the scope issue above).
QUESTION ON "Samba"
- Mounting home directories on NAS
- io blksize problem with cifs
- Mounting home directories on NAS
- Encrypted CIFS
- smb.conf
- Adding Printer via "Run" vs "Printers and Faxes"
- File Locked
- username map change = samba failure
- File Locked
- File Locked
- INTERNAL ERROR: Signal 11 in pid 8928 (3.0.23c)
- loadparm in Samba4
- rppclient problem with cupsaddsmb
- smbd wont start
- samba + start tls
- AIX Testers Needed.
- More on the archive bit saga
- What's wrong with my smb.conf? Access Denied with 3.0.23c
- mangling + wildcards
- Possible to have two SAMBA srvs act as one?