[Samba] Winbind - how to map ADS group to Unix group
Miles, Noal
noal.miles at tdstelecom.com
Thu Mar 3 22:45:06 GMT 2005
Winbind is configured for ads.
I want "Domain\Domain Users" to be members of local linux group "test2".
I created a local group on the linux box:
Groupadd -u 502 test2
I have tried net groupmap addmem, it tells me the syntax is
Net groupmap addmem alias-sid member-sid
There is no SID for test2 so how can I use "net groupmap addmem"?
Wbinfo -G 502
Cannot convert gid 502 to sid
Net groupmap add ntgroup="Domain\Domain Users" unixgroup=test2
Successfully added group "Domain\Domain Users" to the mapping db
Getent group test2
Test2:x:502:
So this doesn't work either.
I have also tried username map in smb.conf with no success.
I appreciate the suggestions thus far. Any additional help would be greatly
appreciated.
Thanks,
Noal
-----Original Message-----
From: Gerald (Jerry) Carter [mailto:jerry at samba.org]
Sent: Tuesday, March 01, 2005 8:00 AM
To: Miles, Noal
Cc: 'samba at lists.samba.org'
Subject: Re: [Samba] Winbind - how to map ADS group to Unix group
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Miles, Noal wrote:
| OK I set "winbind nested group = yes"
use `net groupmap {addmem,delmem,listmem}'
cheers, jerry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCJHV4IR7qMdg1EfYRAgauAJ9zI4gmGpn/9H0E0zA4Y3Nips3nnACdHAUj
HOXXv8XrN7gaVl2mBrpxLcs=
=/mab
-----END PGP SIGNATURE-----
More information about the samba
mailing list