Security Identifier (SID) to User Identifier (uid) ResolutionSystem

Jeremy Allison jeremy at
Wed Dec 29 21:11:24 GMT 1999

Luke Kenneth Casson Leighton wrote:

> ok, been thinking about this some more.
> do we want this:
> int sid2posix(SID sid, enum *gid_or_uid, uint32/64 posix_id);
> or do we want this:
> int sid2posix(SID sid, uint32/64 posix_id);
> because if you do, then you need to do LsaLookupSids(SID, enum *sid_type,
> char* name) and you will get a SID_NAME_USER or SID_NAME_GROUP or
> SID_NAME_ALIAS back, and you have to determine that, ok, it's a
> SID_NAME_USER therefore the posix_id can be typecast to a uid_t.

I don't think we want either. POSIX doesn't deal with SIDs,
and neither should Samba (other than in the ACL code).

winbind should be the one thing on a UNIX box that must
deal with SIDs. No other program on the system is set up
to cope with SIDs.


Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.

More information about the samba-technical mailing list