Winbind doesnt enumerate more than one group from an AD domain
Jean Francois Micouleau
Jean-Francois.Micouleau at dalalu.fr
Fri Oct 25 19:00:09 GMT 2002
On Fri, 25 Oct 2002, Gerald (Jerry) Carter wrote:
> On Fri, 25 Oct 2002, Gareth Davies wrote:
>
> > Apparently they need to be Global or Universal to be shown by Winbind.
>
> Local groups are supported by winbindd using rpc. The LDAP backends for
> winbindd needs this support added (it's a no-op function right now).
>
> I'll have to work on it some more.
???? you mean local groups within the S-1-5-32 sid sub tree or the local
domain groups under the PDC SID ? If that's the first case, winbind
shouldn't even read them, they have no meaning outside the machine they
are defined.
J.F.
More information about the samba-technical
mailing list