sambaSID in the sambaSamAccount a good idea?

Volker Lendecke Volker.Lendecke at SerNet.DE
Wed Jun 25 07:11:23 GMT 2003

On Wed, Jun 25, 2003 at 09:55:12AM +1000, Andrew Bartlett wrote:
> The correct solution (for which I'll produce a patch) is to assert that
> the SID stored in secrets.tdb is always the SID stored in LDAP for the
> domain, and update secrets.tdb is we need to.

Hmmm. I'm still not convinced.

What does this gain us feature-wise, not implementation-wise? IMO a change in
behaviour should really be backed by a good new feature that we get.

A little argument might be that NT only stores the RID in its SAM as well, as
you can see from the SAM_ACCOUNT_INFO delta.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 240 bytes
Desc: not available
Url :

More information about the samba-technical mailing list