Problem with SID-username lookup

Patrick Reid PReid at
Wed Oct 3 08:03:05 GMT 2001

I have samba-2.2.1a installed on a RH 7.1 box running as a PDC

When I first set things up, I was able to control access to directories on a
Win2000 PC which was part of the domain based on the list of domain users
from the samba server. However, I recently changed a user name (a user got
married). I made an error in not deleting the old user from the smbpasswd
file before adding the new one. I soon relaized my mistake and removed the
old line from the smbpasswd file, leaving only correct entires there.

But now, when I try to change permissions on a file or directory on a
Win2000 machine in the domain, I have a problem. I can get a list of the
domain users just fine (btw, is there a way to limit the list which shows up
to just users who are also samba users (i.e. have an entry in the smabpasswd
file?). But when I select someone, one of two behaviours ensues.

1) if the user in question has been logged on to the local machine, they are
added without difficulty.
2) if the user has never logged on to the local machine, Windows returns an
error message: "Unable to lookup user names for display" and no one is added
to the list.

When this happened, there were some directories with permissions which had
been set up before the problem started. They listed the SID of the users
without their user names in the security tab. Once each user had logged in,
this problem disappeared.

Also, I note that as far as I recall, the list of users in the security tab
used to have the full names of the users. Now it is the unix username (I may
be mis-remembering).

In investigating this, I tried using rpcclient and the lookupsids and
lookupusers commands. Any SID for a user in my domain (called CANDESCO)
returns as follows:

S-1-5-21-2887495987-4264539752-2959987270-2000          CANDESCO\ (8)
S-1-5-21-2887495987-4264539752-2959987270-2040          CANDESCO\ (8)

Any user name returns as follows:

CANDESCO                S-0-0 (8)
CANDESCO\pjreid         S-0-0 (8)

So there appears to be some problem with this aspect of my samba install
now. lsaquery returns the correct SID for the CANDESCO domain.

the queryuser command returns the following for any valid rid:

        User Name   :
        Full Name   :
        Home Drive  :
        Dir Drive   :
        Profile Path:
        Logon Script:
        Description :
        Unknown Str :
        Remote Dial :
        Logon Time               :      Wed, 31 Dec 1969 20:00:00 GMT
        Logoff Time              :      Wed, 31 Dec 1969 20:00:00 GMT
        Kickoff Time             :      Wed, 31 Dec 1969 20:00:00 GMT
        Password last set Time   :      Wed, 31 Dec 1969 20:00:00 GMT
        Password can change Time :      Wed, 31 Dec 1969 20:00:00 GMT
        Password must change Time:      Wed, 31 Dec 1969 20:00:00 GMT
        user_rid :      0
        group_rid:      0
        acb_info :      0000
        unknown_3:      00000000
        logon_divs:     0
        unknown_5:      00000000

I checked the MS knowledge base and found an article which suggested
installing SP2. This did not fix the problem.

How can I fix this?

Patrick Reid

More information about the samba mailing list