[Samba] samba-tool group removemembers, not working
Denis Cardon
dcardon at tranquil.it
Tue May 28 09:04:01 UTC 2019
Hi Mark,
> Because of other issues using ADUC, I tried to remove a domain member using:
>
>> samba-tool group removemembers "Domain Computers" MARKA\$
> Removed members from group Domain Computers
>
> As shown, it say it "Removed members", but ...
>
>> samba-tool group listmembers "Domain Computers"
> :
> LABRAT$
> :
> OHPRSSTORAGE$
> MARKA$
> :
> COMMON$
> :
>
> listmembers still shows the computer as a member of "Domain Computers". What's up with this?
"Domain Computers" is the primaryGroupID of AD joined computer (515).
The computer object is a member not because it is listed in the group
membership, but because of its primaryGroupID attribute. If you want to
get it out of "domain computers", you have to change that attribute to
something else.
You can test with a different group than "Domain computers" or "Domain
computers", it will work as intended.
I admit that the message is misleading though. By the way, why do you
want to remove that computer from "Domain Computers" group?
Cheers,
Denis
>
> Samba Version 4.8.2
>
> THX --Mark
>
--
Denis Cardon
Tranquil IT
12 avenue Jules Verne (Bat. A)
44230 Saint Sébastien sur Loire (FRANCE)
tel : +33 (0) 240 975 755
http://www.tranquil.it
Tranquil IT recrute! https://www.tranquil.it/nous-rejoindre/
Samba install wiki for Frenchies : https://dev.tranquil.it
WAPT, software deployment made easy : https://wapt.fr
More information about the samba
mailing list