No subject

permissions for each entry. It is also possible to delete an entry.

BUT: I cannot add an entry. If I add a user to the list and submit the 
changes, the added entry disappears again and I only see the entries I 
had before.

In the logs I found the following lines:

[2002/09/11 11:14:03, 0] smbd/posix_acls.c:create_canon_ace_lists(823)
  create_canon_ace_lists: unable to map SID 
S-1-5-21-730796786-1604346809-928725530-1230 to uid or gid.

So I tried to investigate a bit further with rpcclient. The NT4 PDC 
gave me:

odenbach at edjo[~]>>rpcclient -U odenbach -W HNIRB -c 'lookupsids 
S-1-5-21-730796786-1604346809-928725530-1230' moritz
Password:
cmd = lookupsids S-1-5-21-730796786-1604346809-928725530-1230
S-1-5-21-730796786-1604346809-928725530-1230 HNIRB\axel (1)

which is correct (HNIRB ist the domain, axel the added user).

But the samba server tells me this:

odenbach at edjo[~]>>rpcclient -U odenbach -W HNIRB -c 'lookupsids 
S-1-5-21-730796786-1604346809-928725530-1230' edjo
Password:
cmd = lookupsids S-1-5-21-730796786-1604346809-928725530-1230
S-1-5-21-730796786-1604346809-928725530-1230 EDJO\unix_user.115 (1)

What am I doing wrong? Or what does Samba do wrong?

Details:

Linux 2.4.18
XFS 1.1
Samba 2.2.5 with Jerry's patches

smb.conf:

[global]
        workgroup               = HNIRB
        security                = domain
        encrypt passwords       = yes
        password server         = moritz, pinky
        wins server             = 131.234.166.19
        security mask                   = 0777
        force security mode             = 000
        directory security mask         = 0777
        force directory security mode   = 100
        inherit permissions     = yes
[acltest]
        path                    = /home/ACLTEST
        writeable               = yes



By the way: Has anyone got a similar environent up and running? What is 
different?

Thanks,

Christopher