[Samba] smbgroupedit & ldapsam backend with samba 3.0a23
Christoph Scholz
scholz at cs.uni-bonn.de
Wed Apr 16 11:49:04 GMT 2003
Hi!
Has anyone got the group mapping feature of samba 3.0 working with ldapsam?
I am not able to to add any groups to the group mapping table. The
following works with the tdbsam backend:
-------------------------------------------------------------------
[root at tokyo root]# smbgroupedit -a mitarbeiter -td
[root at tokyo root]# smbgroupedit -v
NT group (SID) -> Unix group
System Operators (S-1-5-32-549) -> -1
Replicators (S-1-5-32-552) -> -1
Guests (S-1-5-32-546) -> -1
Power Users (S-1-5-32-547) -> -1
Domain Admins (S-1-5-21-341274446-1685656727-1244863647-512) -> -1
Domain Guests (S-1-5-21-341274446-1685656727-1244863647-514) -> -1
Print Operators (S-1-5-32-550) -> -1
Domain Users (S-1-5-21-341274446-1685656727-1244863647-513) -> -1
Administrators (S-1-5-32-544) -> -1
Account Operators (S-1-5-32-548) -> -1
mitarbeiter (S-1-5-21-341274446-1685656727-1244863647-12857) -> mitarbeiter
Backup Operators (S-1-5-32-551) -> -1
Users (S-1-5-32-545) -> -1
[root at tokyo root]#
-------------------------------------------------------------------
If I use the ldapsam backend it looks like this:
-------------------------------------------------------------------
[root at tokyo root]# smbgroupedit -a mitarbeiter -td
[root at tokyo root]# smbgroupedit -v
NT group (SID) -> Unix group
[root at tokyo root]#
-------------------------------------------------------------------
Note that sambaAccounts work perfectly with the ldapsam backend.
I am using this on a RedHat 9 Box.
My smb.conf looks like this:
-------------------------------------------------------------------
[global]
unix charset = CP850
workgroup = ABTEILUNG-IV
server string = PDC ABTEILUNG-IV
smb passwd file = /etc/samba/smbpasswd
algorithmic rid base = 10000
username map = /usr/local/samba/lib/smbusers
log file = /usr/local/samba/var/%m.log
max log size = 0
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
add machine script = /usr/sbin/useradd -g rechner -d /dev/null
-s /bin/false %u
logon script = logon.bat
logon path =
logon drive = h:
logon home = \\%N\user\%U
domain logons = Yes
os level = 99
preferred master = Yes
domain master = Yes
dns proxy = No
wins support = Yes
ldap port = 389
ldap suffix = o=smb,dc=bonn,dc=edu
ldap machine suffix = ou=Computers,o=smb,dc=bonn,dc=edu
ldap user suffix = ou=Users,o=smb,dc=bonn,dc=edu
ldap admin dn = "cn=root,o=smb,dc=bonn,dc=edu"
ldap ssl = no
ldap delete dn = Yes
hosts allow = 131.220.6.0/255.255.255.0,
131.220.242.96/255.255.255.224
-------------------------------------------------------------------
Any ideas on this would be greatly appreciated!
Bye,
Christoph
More information about the samba
mailing list