Xserve in PDC mode: how to manage Win clients?

[MacDave]

i’ve set up an Xserve 10.4.8 as an OD master and I’ve configured it as a Windows PDC. I was able to bind a Windows XP Pro client machine to the server domain, and can login to that Windows machine with my accounts on the OD Master/PDC. I’m able to access the user home folder, profile info, etc. All is working fine in that regard.

However, I can’t run Windows Update from the XP machines, nor can I do anything else requiring admin priviliges. Does anyone know how I can grant local computer admin privileges to my network user?

Also: are there any other important features not supported by Mac sevrer in PDC mode that ARE offered by a native Windows AD server? Seems that policies are obviously missing: would love to see any lists that any of you might have of other important missing features.

Thanks!

[gverhoff]

To manage the xp workstation as a user logged into the box, you’ll have to add that user, or that user’s group to the local admins group on the workstation.

I believe that the group policy your refering to in regards to managing windows workstations is absent from Samba service, which gives you the PDC on the mac.

The best place to double check what’s included in the software is http://www.samba.org, they’ll have the complete documentation of the features of the software.

[black_box]

By default when a Windows box binds to the domain it adds the group “Domain Admin” to the local machine’s admin group.

Basically what this accomplishes is assuming you have an OD group called “Domain Admins”, all users added to this OD group are by default then also local admins.

You may have some fun checking out Sambas article about the SMBRID attribute but I’ve never been able to figure out why its necessary, as I can use the suggested SMBRID, or change it to anything I want and see no behavioral difference whatsoever.

black_box

[Author]

Posts