Winbind doesnt enumerate more than one group from an AD domain
Jean Francois Micouleau
Jean-Francois.Micouleau at dalalu.fr
Fri Oct 25 21:04:01 GMT 2002
On Fri, 25 Oct 2002, Gerald (Jerry) Carter wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On Fri, 25 Oct 2002, Jean Francois Micouleau wrote:
>
> > ???? you mean local groups within the S-1-5-32 sid sub tree or the local
> > domain groups under the PDC SID ? If that's the first case, winbind
> > shouldn't even read them, they have no meaning outside the machine they
> > are defined.
>
> In a Windows 2000 native mode domain, domain local groups
> are available for use by any domain member. These are the
> ones I thought we were referring to. Did I misread the original
> post?
ok then it's still a problem of vocabulary :) Can we settle on a
definitive wording ?
local groups, domain groups, domain local groups, universal groups.
J.F.
More information about the samba-technical
mailing list