Win2k machine accounts To allow domain login from machines running Windows NT or Windows 2000, you need to create machine account for every machine. The machine account are special accounts with $ at the end, i.e. machine$. Since there might be some problems creating them from Windows, it's easier to create them in advance directly on Unix. However, it is possible to set up add user script in smb.conf. See samba documentation for more. To add machine account, use your system script, most likely adduser. If your system does not support user names with $ (i.e. FreeBSD), you must edit your password database to add it manualy. So on FreeBSD, use vipw. The system accounts for machines do not need login shell neither home dir, so use false as login shell and /dev/null as home dir. After adding system accounts, you must use smbpasswd to add Samba machine account. There you can use $ in usernames. So typical command will look like: $ smbpasswd -a -m $ CSC130: Configuring Samba as a PDC for Win2000 Clients