Renaming the admin account in Windows server context is a
popular measure to make the network more safe.
Can we do this also in Samba 4? Are there any negative consequences?
dsquery group -name "Domain Admins" | dsget group -members"CN=DomAdm,CN=Users,DC=samdom,DC=example,DC=com"
Sure you can rename it. Being a member of the right groups decite what
an account can do.
However, I don't understand how renaming the admin account improves the >security. For example, every domain user can easily find out who is a
member of the "Domain Admins" group:
dsquery group -name "Domain Admins" | dsget group -members "CN=DomAdm,CN=Users,DC=samdom,DC=example,DC=com"
Regards,
Marc
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 293 |
Nodes: | 16 (2 / 14) |
Uptime: | 212:04:21 |
Calls: | 6,619 |
Calls today: | 1 |
Files: | 12,168 |
Messages: | 5,317,365 |