> The Domain Admin user "domadmin" must have the root-policies on the > /etc/passwd like this: > domadmin:x:0:0:
This is incorrect as you should never have users with identical uids. You should mod the entry in etc/group to add your domadmin user to the root group. This gives it root privs. > In my opinion it is not fine, because it is a security-hole, Incorrect. Only someone of root or admin privs should be able to initially join domains for if any one could, then a potential hacker to do so w/o admin/root privs and attain further domain trust by doing so. Bri- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba