Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Windows root_owner should be System #333

Open
Annih opened this issue Aug 21, 2015 · 0 comments
Open

Windows root_owner should be System #333

Annih opened this issue Aug 21, 2015 · 0 comments
Labels
Type: Enhancement Adds new functionality.

Comments

@Annih
Copy link
Contributor

Annih commented Aug 21, 2015

Hello,

In windows the root equivalent user is SYSTEM, often we use the Builtin\Administrator account as a good alternative, because SYSTEM has at least the same right as Administrator
But ... I said often, and when you promote your server as a Domain Controller you loose the "Local Accounts" distinction, and SYSTEM starts to behave differently than Administrator!

Meaning that, if you promote your server as a Domain Controller, and chef is running as SYSTEM, currently you have big trouble to touch the client.rb file (via the config recipe for instance) because it's own by Administrator.

There is an helper to determine the root_owner but it's use an hardcoded SID + limit the query to LocalAccount which aren't there anymore :)

I know that new attributes are not accepted on this cookbook so ... I'll not create a PR adding a new node['chef_client']['root_user'] attribute allowing me to use SYSTEM and not Administrator as root_owner.
Therefore, do you have any other solution?

Regards!
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Type: Enhancement Adds new functionality.
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Annih @tas50