"Anthony S. Nixon" <[EMAIL PROTECTED]> wrote:
>
>Hello David,
>
>Yes, NT does do that, no Linux can not do that. It is a function of user
>management within NT. NT would recognize the difference because of the
>security token that is passed during logon. The ACL is read telling the
>token what profile to use and file/directory rights the user has. The
>profiles could quite possibly be stored on an Linux system, but the drive
>would have to "mapped" before the logon took place. Linux does not have the
>ability (yet) to do this.
>
>Shon Nixon, MCSE and avid Linux user.
>Chief Information Technology
>Midrex Direct Reduction Corp.
One of the Samba team members who implemented a lot of the PDC stuff suggests:
|An ACL is a passive object - it's *applied* to things. The token
|passed to the client from the domain controller is essentially a
|random number. On a Samba PDC it *is* a random number :-).
He also said:
|On logon, when a drive needs to be mapped it is
|done as the logged on user, using normal SMB calls
|with the standard challenge/response (if encrypted
|passwords are set up).
and
| anonymous (null) sessionsetups work too
HTH ...
Regards
-------
Richard Sharpe, [EMAIL PROTECTED], NIC-Handle:RJS96
NS Computer Software and Services P/L,
Ph: +61-8-8281-0063, FAX: +61-8-8250-2080,
Samba, Linux, Apache, Digital UNIX, AIX, Netscape, Stronghold, C, ...
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
