Manualshelf

HP CIFS Server "net ads join" with Minimum User Permissions

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
12345678910
10
3.2 At the CIFS/Samba Command Line
Now execute the “net ads join U darla”. Darla is an ordinary user with only the special privilege of
“Create Computer Objects” for the Active Directory Computers container:
rmonster->net ads join -U darla
darla's password:
[2005/09/14 09:41:23, 0] libads/ldap.c:ads_add_machine_acct(1473)
Warning: ads_set_machine_sd: Unexpected information received
Using short domain name -- SNSLATC
Joined 'RMONSTER' to realm 'SNSLATC.HP.COM'
rmonster->
The join succeeds. CIFS/Samba on the HP-UX server may now be started, and users will successfully
authenticate if the server configuration has been set up correctly. See Chapter 5 for a list of “net ads”
command that work with minimum permissions.
Notice the Warning message in the test above. See chapter 5 for a description and ramifications of this
warning.
Test that domain membership and Kerberos authentication correctly operates by mapping a share with a
domain member client.