[Samba] Sync win2k local user list with samba user list
Hi all, I want to be able to at logon sync the windows 2000 userlist with the samba user list, so that each user that is added to the samba server is automatically added to each workstation with appropriate permisions ie admin, power users, etc. Is it possible to do this and if so how. I am running latest samba as PDC with roaming profiles. Any help is greatly appreciated Regards Will - This mail sent through IMP: http://horde.org/imp/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Sync win2k local user list with samba user list
On Sat, 14 Feb 2004 [EMAIL PROTECTED] wrote: Hi all, I want to be able to at logon sync the windows 2000 userlist with the samba user list, so that each user that is added to the samba server is automatically added to each workstation with appropriate permisions ie admin, power users, etc. Is it possible to do this and if so how. I am running latest samba as PDC with roaming profiles. Why in goodness name would you want to add accounts to workstations that already exist on the server? The whole purpose of having domain accounts is so that you do not need user accounts on the individual workstations. Baffled! Any help is greatly appreciated Avoid pain! Do NOT have local workstation accounts. Instead, use domain accounts. - John T. -- John H Terpstra Email: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Sync win2k local user list with samba user list
.[ John H Terpstra wrote ] Sun, 15 Feb 2004 01:36:08 + (GMT) On Sat, 14 Feb 2004 [EMAIL PROTECTED] wrote: Hi all, I want to be able to at logon sync the windows 2000 userlist with the samba user list, so that each user that is added to the samba server is automatically added to each workstation with appropriate permisions ie admin, power users, etc. Is it possible to do this and if so how. I am running latest samba as PDC with roaming profiles. Why in goodness name would you want to add accounts to workstations that already exist on the server? The whole purpose of having domain accounts is so that you do not need user accounts on the individual workstations. Baffled! I think what's he's saying is adding a local domain user to a box in order to upgrade permissions. In other words have Bob have a domain logon, but also be able to be a local admin for the Windows box. Any help is greatly appreciated Avoid pain! Do NOT have local workstation accounts. Instead, use domain accounts. - John T. I would also like to know if this is possible as there is a lot of software out there that still requires elevated privs to run on Windows boxen. Paul Espinosa -- They that would give up freedom to obtain a little temporary safety deserve neither freedom nor safety --Benjamin Franklin -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Sync win2k local user list with samba user list
On Sun, 2004-02-15 at 13:04, Paul Espinosa wrote: .[ John H Terpstra wrote ] Sun, 15 Feb 2004 01:36:08 + (GMT) On Sat, 14 Feb 2004 [EMAIL PROTECTED] wrote: Hi all, I want to be able to at logon sync the windows 2000 userlist with the samba user list, so that each user that is added to the samba server is automatically added to each workstation with appropriate permisions ie admin, power users, etc. Is it possible to do this and if so how. I am running latest samba as PDC with roaming profiles. Why in goodness name would you want to add accounts to workstations that already exist on the server? The whole purpose of having domain accounts is so that you do not need user accounts on the individual workstations. Baffled! I think what's he's saying is adding a local domain user to a box in order to upgrade permissions. In other words have Bob have a domain logon, but also be able to be a local admin for the Windows box. Indeed, this is quite a common setup. Any help is greatly appreciated Avoid pain! Do NOT have local workstation accounts. Instead, use domain accounts. - John T. I would also like to know if this is possible as there is a lot of software out there that still requires elevated privs to run on Windows boxen. Put each user in a domain group, and put that group into the local 'administrators' or 'power users' alias. So far, I've done this with the GUI. It should be possible to do this with remote tools like rpcclient, or with local scripting too. Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Sync win2k local user list with samba user list
On Sat, 14 Feb 2004, Paul Espinosa wrote: .[ John H Terpstra wrote ] Sun, 15 Feb 2004 01:36:08 + (GMT) On Sat, 14 Feb 2004 [EMAIL PROTECTED] wrote: Hi all, I want to be able to at logon sync the windows 2000 userlist with the samba user list, so that each user that is added to the samba server is automatically added to each workstation with appropriate permisions ie admin, power users, etc. Is it possible to do this and if so how. I am running latest samba as PDC with roaming profiles. Why in goodness name would you want to add accounts to workstations that already exist on the server? The whole purpose of having domain accounts is so that you do not need user accounts on the individual workstations. Baffled! I think what's he's saying is adding a local domain user to a box in order to upgrade permissions. In other words have Bob have a domain logon, but also be able to be a local admin for the Windows box. Doh! John T. Read it again next time! :( As Andrew Bartlett has said, that's easy. Simply add the Domain Users group to your local Administrators group on each workstation. Sorry - I should not shoot from the hip so fast. Any help is greatly appreciated Avoid pain! Do NOT have local workstation accounts. Instead, use domain accounts. - John T. I would also like to know if this is possible as there is a lot of software out there that still requires elevated privs to run on Windows boxen. Paul Espinosa Cheers, John T. -- John H Terpstra Email: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Sync win2k local user list with samba user list
Well, I just went and tried Andrew Bartlett's suggestion. Works like a champ! Guess I'm just used to not being able to nest groups. heh Thanks all, Paul Espinosa BTW John, Really getting a lot out of your book The Official Samba-3 HOWTO and Reference Guide. I bought it for work and am planning on buying it for my personal bookshelf. .[ John H Terpstra wrote ] | | Sun, 15 Feb 2004 02:43:17 + (GMT) | | On Sat, 14 Feb 2004, Paul Espinosa wrote: | | | .[ John H Terpstra wrote ] | | Sun, 15 Feb 2004 01:36:08 + (GMT) | | On Sat, 14 Feb 2004 [EMAIL PROTECTED] wrote: | |Hi all, | |I want to be able to at logon sync the windows 2000 userlist with |the samba user list, so that each user that is added to the samba |server is automatically added to each workstation with appropriate |permisions ie admin, power users, etc. Is it possible to do this |and if so how. I am running latest samba as PDC with roaming |profiles. | | Why in goodness name would you want to add accounts to workstations | that already exist on the server? The whole purpose of having domain | accounts is so that you do not need user accounts on the individual | workstations. | | Baffled! | | I think what's he's saying is adding a local domain user to a box in | order to upgrade permissions. In other words have Bob have a domain | logon, but also be able to be a local admin for the Windows box. | | Doh! John T. Read it again next time! :( | | As Andrew Bartlett has said, that's easy. Simply add the Domain Users | group to your local Administrators group on each workstation. | | Sorry - I should not shoot from the hip so fast. | | | |Any help is greatly appreciated | | Avoid pain! Do NOT have local workstation accounts. Instead, use | domain accounts. | | | - John T. | | I would also like to know if this is possible as there is a lot of | software out there that still requires elevated privs to run on Windows | boxen. | | Paul Espinosa | | | | Cheers, | John T. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
