From 537ff0f5f9f853029685eadc3c106e6f80a362c3 Mon Sep 17 00:00:00 2001 From: Simo Sorce Date: Sat, 7 Apr 2007 14:09:17 +0000 Subject: Document the net sam options (This used to be commit a0adb226d6b19e0d26df6a804fc5ffa4e892cd64) --- docs/manpages-3/net.8.xml | 235 ++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 235 insertions(+) (limited to 'docs/manpages-3') diff --git a/docs/manpages-3/net.8.xml b/docs/manpages-3/net.8.xml index 8a1531a66b..0e08a8e9d3 100644 --- a/docs/manpages-3/net.8.xml +++ b/docs/manpages-3/net.8.xml @@ -911,6 +911,241 @@ to show in the result. + +SAM CREATEBUILTINGROUP <NAME> + + +(Re)Create a BUILTIN group. +Only a wellknown set of BUILTIN groups can be created with this command. +This is the list of currently recognized group names: Administrators, +Users, Guests, Power Users, Account Operators, Server Operators, Print +Operators, Backup Operators, Replicator, RAS Servers, Pre-Windows 2000 +ompatible Access. + +This command requires a running Winbindd with idmap allocation properly +configured. The group gid will be allocated out of the winbindd range. + + + + + +SAM CREATELOCALGROUP <NAME> + + +Create a LOCAL group (also known as Alias). + +This command requires a running Winbindd with idmap allocation properly +configured. The group gid will be allocated out of the winbindd range. + + + + + +SAM MAPUNIXGROUP <NAME> + + +Map an existing Unix group and make it a Domain Group, the domain group +will have the same name. + + + + + +SAM ADDMEM <GROUP> <MEMBER> + + +Add a member to a Local group. The group can be specified only by name, +the member can be specified by name or SID. + + + + + +SAM DELMEM <GROUP> <MEMBER> + + +Remove a member from a Local group. The group and the member must be +specified by name. + + + + + +SAM LISTMEM <GROUP> + + +List Local group members. The group must be specified by name. + + + + + +SAM LIST <users|groups|localgroups|builtin|workstations> [verbose] + + +List the specified set of accounts by name. If verbose is specified, +the rid and description is also provided for each account. + + + + + +SAM SHOW <NAME> + + +Show the full DOMAIN\\NAME the SID and the type for the corrisponding +account. + + + + + +SAM SET HOMEDIR <NAME> <DIRECTORY> + + +Set the home directory for a user account. + + + + + +SAM SET PROFILEPATH <NAME> <PATH> + + +Set the profile path for a user account. + + + + + +SAM SET COMMENT <NAME> <COMMENT> + + +Set the comment for a user or group account. + + + + + +SAM SET FULLNAME <NAME> <FULL NAME> + + +Set the full name for a user account. + + + + + +SAM SET LOGONSCRIPT <NAME> <SCRIPT> + + +Set the logon script for a user account. + + + + + +SAM SET HOMEDRIVE <NAME> <DRIVE> + + +Set the home drive for a user account. + + + + + +SAM SET WORKSTATIONS <NAME> <WORKSTATIONS> + + +Set the workstations a user account is allowed to log in from. + + + + + +SAM SET DISABLE <NAME> + + +Set the "disabled" flag for a user account. + + + + + +SAM SET PWNOTREQ <NAME> + + +Set the "password not required" flag for a user account. + + + + + +SAM SET AUTOLOCK <NAME> + + +Set the "autolock" flag for a user account. + + + + + +SAM SET PWNOEXP <NAME> + + +Set the "password do not expire" flag for a user account. + + + + + +SAM SET PWMUSTCHANGENOW <NAME> [yes|no] + + +Set or unset the "password must change" flag fro a user account. + + + + + +SAM POLICY LIST + + +List the avilable account policies. + + + + + +SAM POLICY SHOW <account policy> + + +Show the account policy value. + + + + + +SAM POLICY SET <account policy> <value> + + +Set a value for the account policy. +Valid values can be: "forever", "never", "off", or a number. + + + + + +SAM PROVISION + + +Only available if ldapsam:editposix is set and winbindd is running. +Properly populates the ldap tree with the basic accounts (Administrator) +and groups (Domain Users, Domain Admins, Domain Guests) on the ldap tree. + + + + USERSHARE -- cgit