NT registry Permission problem
Elrond
Elrond at Wunder-Nett.org
Fri Feb 11 18:57:12 GMT 2000
On Sat, Feb 12, 2000 at 04:01:20AM +1100, Zhi-Wei Lu wrote:
> I have tested the 2.0.6 PDC functionality many more times on a few
> platforms since I sent my first post. Even with the same server and
> configuration file, samba PDC will fail to grant NT user proper
> registry right most of the time, but it will work once in a while. In these
> tests, I always delete machine.sid file, restart the server, and rejoining
> NT domain. I think that there are some instability/bug in samba/NT codes that
> cause
[...]
You mean DOMAIN.SID?
If so, that might be the problem.
If you remove the SID-file for the domain, samba generates
a new one and you have to rejoin all your workstations.
But:
The ACLs in your "old" registry still contain the SID for
the "old" SID for that user (The sid for a User is
generated by appending a RID to the domain-sid).
You have two options here.
1) remove the complete old profile for that user
2) After they logged in, there's a local copy of the
profile. You can "copy" this profile in system-control
--> System --> User Profiles, there you can specify a
user, who may access the new profile.
Just guessing a bit around...
Elrond
More information about the samba-ntdom
mailing list