[Samba] samba3/ldap/net groupmap fails
Fabien Chevalier
fabien.chevalier at supelec.fr
Fri Dec 12 11:37:17 GMT 2003
> We use samba3+openldap 2.1 correctly.
> net groupmapping also works correctly.
>
> Are your samba.schema is up to date?
> What is the ldap version?
>
In my case i use OpenLDAP 2.1.23, with Samba 3.0.0 schemas.
'net groupmapping' works fine except you don't have default mappings when
using an ldap backend as first backend,
i.e.:
with "passwd backend = tdbsam ldapsam_compat://..."
dc-sorral-05:~# net groupmap list
System Operators (S-1-5-32-549) -> -1
Replicators (S-1-5-32-552) -> -1
Guests (S-1-5-32-546) -> -1
Domain Users (S-1-5-21-50507076-2264231353-679752913-513) -> -1
Power Users (S-1-5-32-547) -> -1
Print Operators (S-1-5-32-550) -> -1
Administrators (S-1-5-32-544) -> -1
Account Operators (S-1-5-32-548) -> -1
Domain Guests (S-1-5-21-50507076-2264231353-679752913-514) -> -1
Backup Operators (S-1-5-32-551) -> -1
Users (S-1-5-32-545) -> -1
Domain Admins (S-1-5-21-50507076-2264231353-679752913-512) -> -1
dc-sorral-05:~#
with "passwd backend = ldapsam_compat:// tdbsam ..."
dc-sorral-05:~# net groupmap list
Domain Users (S-1-5-21-50507076-2264231353-679752913-513) -> utilisateurs
Domain Admins (S-1-5-21-50507076-2264231353-679752913-512) -> sambaadmin
Domain Guests (S-1-5-21-50507076-2264231353-679752913-514) -> guests
dc-sorral-05:~#
But you can still create mappings if you want (provided the unix group is stored in ldap and not int /etc/groups)
Regards,
Fabien Chevalier
More information about the samba
mailing list