Cross Forest Trusts
Todd Stecher
todd.stecher at isilon.com
Fri Sep 7 18:29:30 GMT 2007
Given the following:
Forest A < --------- Cross Forest Transitive Trust --->
Forest B
Child Domain of forest A
When a Samba server is joined to the child domain of forest A, and
the share level permissions allow Forest B \ Domain Users, winbindd
fails to authenticate the user - simply put, it cannot do a name--
>sid translation for Forest B:
winbindd_group.c:winbindd_getgrnam(243)
[11:28am]
could not get domain sid for domain W2K3.WEST.ISILON.COM
I'm pretty sure this is because we're using "crusty old" RPCs which
don't do cross forest lookups - is this something which is slated to
be fixed sometime soon?
Thanks in advance,
Todd
Todd Stecher | Windows Interop Dev
Isilon Systems P +1-206-315-7500 F +1-206-315-7501
www.isilon.com D +1-206-315-7638 M +1-425-205-1180
More information about the samba-technical
mailing list