New subject - unix group and unix user names

Stefan Walter walter at inf.ethz.ch
Fri Mar 12 22:28:05 GMT 1999


This does not go to the samba-ntdom list, first want to make sure if
I understand this right (logic and English).

> > Did you mean NT group name + NT user name are the same? That should not
>
>by default it will be if you don't map every single unix name or unix
>group listed in /etc/passwd+private/smbpasswd and /etc/group that happen
>to be the same.
> > What is the current requirement for unix groups (at least now)? Is it required
> > that all group names are no user names?
>
>definitely and absolutely.

That meas that as an additional step in the PDC setup procedure you should
verify your groups and for instance do a remap of all users that happen
to be group names, eg. like this:

> cat maps/domainusers.map
root=Administrator
sys="System Manager"
...

This step would be essential for different OSes like Solaris where the
/etc/group file starts like this:

root::0:root
another::1:
bin::2:root,bin,daemon
sys::3:root,bin,sys,adm
adm::4:root,adm,daemon
uucp::5:root,uucp
mail::6:root
tty::7:root,tty,adm
lp::8:root,lp,adm
...

And at least "root" people are going to use as "Domain Administrator".

Did I get this right?

- Stefan

--
Stefan Walter - SysAdmin at D-INFK (StabSoft), ETH Zurich, Switzerland


More information about the samba-ntdom mailing list