migration NT-4 to Samba 3.0.9 PDC
NGUYEN Ngoc Can
cnguyen at redhat.com
Wed Dec 22 15:10:06 GMT 2004
Dear all
Could someone help me please ?
1. all mapping NT -> Unix group
net group list
Opérateurs de serveur (S-1-5-32-549) -> domaineusers
Duplicateurs (S-1-5-32-552) -> domaineusers
Invités (S-1-5-32-546) -> domaineusers
Domain Admins (S-1-5-21-709110147-434897533-953900138-512) ->
domaineusers
Replicators (S-1-5-21-709110147-434897533-953900138-1005) -> daemon
Administrators (S-1-5-21-709110147-434897533-953900138-1001) -> root
Domain Computers (S-1-5-21-709110147-434897533-953900138-515) ->
sambamachines
Domain Guests (S-1-5-21-709110147-434897533-953900138-1199) -> nobody
Power Users (S-1-5-32-547) -> domaineusers
Domain Users (S-1-5-21-709110147-434897533-953900138-513) ->
domaineusers
Opérateurs d'impression (S-1-5-32-550) -> domaineusers
Administrateurs (S-1-5-32-544) -> domaineusers
grouptoto (S-1-5-21-709110147-434897533-953900138-1007) -> sys
Print Operators (S-1-5-21-709110147-434897533-953900138-1015) -> lp
Domain Admins (S-1-5-21-709110147-434897533-953900138-21023) -> ntadmin
Opérateurs de compte (S-1-5-32-548) -> domaineusers
Backup Operators (S-1-5-21-709110147-434897533-953900138-1003) -> bin
Opérateurs de sauvegarde (S-1-5-32-551) -> domaineusers
Utilisateurs (S-1-5-32-545) -> domaineusers
Domain Guests (S-1-5-21-709110147-434897533-953900138-514) ->
domaineusers
my /etc/group
sambausers:x:10009:
sambamachines:x:10010:
ntadmin:x:10011:
domaineusers:x:4294967295:
nb : i must add "domaineusers" with gid=4294967295 that expect from
migration NT to samba for SAM
2. migration database SAM from NT-4 to Samba 3.0.9
net rpc vampire -S wntsvr -w DOMAINE -U administrateur
Fetching DOMAIN database
SAM_DELTA_DOMAIN_INFO not handled
Creating unix group: 'Admins du domaine'
Creating unix group: 'Utilisa. du domaine'
Creating unix group: 'Invités du domaine'
Creating account: Administrateur
Creating account: Invité
Could not create posix account info for 'Invité'
Creating account: WNTSVR$
Creating account: W2KSVR$
Creating account: bruno
Creating account: RHXP$
Creating account: DHCP183$
Creating account: admex
Creating account: WNTEX$
[2004/12/22 12:08:46, 0] utils/net_rpc_samsync.c:fetch_group_mem_info
(582)
Could not find global group 512
[2004/12/22 12:08:46, 0] utils/net_rpc_samsync.c:fetch_group_mem_info
(582)
Could not find global group 513
[2004/12/22 12:08:46, 0] utils/net_rpc_samsync.c:fetch_group_mem_info
(582)
Could not find global group 514
Group members of sys: Administrateur,admex,
usermod : l'utilisateur sys n'existe pas
usermod : l'utilisateur sys n'existe pas
Fetching BUILTIN database
SAM_DELTA_DOMAIN_INFO not handled
Could someone help me by explaining why "Could not find global group
512, 513, 514" what are these groups please ?? they're are NT group or
unix group ?? how can i resolve this group problem ??
nb : it did not create me user "Invité" because it got an accent ... no
matter, i don't user this user for authentification ...
3. Test authentification
from my database SAM migrated ...
pdbedit -L
RHXP$:4294967295:RHXP$
nguyen:0:NGUYEN Ngoc Can
Administrateur:4294967295:adminDomaine
bruno:516:BDS
root:0:root
admex:518:administrateur exchange
WNTSVR$:4294967295:
dhcp183$:520:
WNTEX$:4294967295:
W2KSVR$:4294967295:W2KSVR$
I used "administrateur" to authentificate .... to my samba PDC
net rpc join -S dhcp183 -w DOMAINE -U administrateur
Password:xxx
Could not connect to server dhcp183
The username or password was not correct.
nb : dhcp183 is my samba PDC
in log file :
[2004/12/22 16:03:22, 0] rpc_server/srv_netlog_nt.c:get_md4pw(261)
get_md4pw: Workstation DHCP183$: no account in domain
[2004/12/22 16:03:24, 1] auth/auth_util.c:make_server_info_sam(822)
User Administrateur in passdb, but getpwnam() fails!
[2004/12/22 16:03:24, 0] auth/auth_sam.c:check_sam_security(306)
check_sam_security: make_server_info_sam() failed with
'NT_STATUS_NO_SUCH_USER'
I don't understand why DHCP183$ is not an account in my DOMAINE ??? i
can see it in passwd.tdb (pdbedit -L) in my passwd.tdb (pdbedit -L)
It seems success to match "administrateur" user but not his password !!!
Why ??? could someone help me please ?? in forum from Samba website ...
a lot of people
successed to migrate NT-4 to Samba PDC, but never they explain in the
details how they've done
thank you by advanced
best regards
Can
More information about the samba-technical
mailing list