Added clarification regarding user rights and privileges.

author John Terpstra <jht@samba.org>

Thu, 22 Dec 2005 19:40:24 +0000 (19:40 +0000)

committer John Terpstra <jht@samba.org>

Thu, 22 Dec 2005 19:40:24 +0000 (19:40 +0000)
author John Terpstra <jht@samba.org>
Thu, 22 Dec 2005 19:40:24 +0000 (19:40 +0000)
committer John Terpstra <jht@samba.org>
Thu, 22 Dec 2005 19:40:24 +0000 (19:40 +0000)
diff --git a/Samba3-HOWTO/TOSHARG-RightsAndPriviliges.xml b/Samba3-HOWTO/TOSHARG-RightsAndPriviliges.xml

index 828e3104bd7af6221d8ce5420b556a781edfb990..5ce64ddffdfb3da875bfcdc237a2eece8e11d25d 100644 (file)
--- a/Samba3-HOWTO/TOSHARG-RightsAndPriviliges.xml
+++ b/Samba3-HOWTO/TOSHARG-RightsAndPriviliges.xml
@@ -250,7 +250,10 @@ The <command>net rpc rights</command> utility in Samba 3.0.11 has three new subc
  <indexterm><primary>Domain Admins</primary></indexterm>
  <indexterm><primary>revoke privileges</primary></indexterm>
  You must be connected as a member of the Domain Admins group to be able to grant or revoke privileges assigned
-to an account.  This capability is inherent to the Domain Admins group and is not configurable.
+to an account.  This capability is inherent to the Domain Admins group and is not configurable. There are no
+default rights and privileges, except the ability for a member of the Domain Admins group to assign them.
+This means that all administrative rights and privileges (other than the ability to assign them) must be 
+explicitly assigned, even for the Domain Admins group.
  </para></note>
  
  <para>
author	John Terpstra <jht@samba.org>
	Thu, 22 Dec 2005 19:40:24 +0000 (19:40 +0000)
committer	John Terpstra <jht@samba.org>
	Thu, 22 Dec 2005 19:40:24 +0000 (19:40 +0000)