[Samba] Re: Samba 3.0.0 - LDAP Authetication trouble
Andrew Bartlett
abartlet at samba.org
Wed Nov 12 23:16:56 GMT 2003
On Thu, 2003-11-13 at 03:11, Carl Weiss wrote:
> Ok if all your users have the same SID xxx-3000 they are not incrementing
> correctly in the add user script. I had this same problem when I wasn't
> correctly authenticating to the LDAP server I was in fact using the
> /etc/passwd file, and then using the same test user accounts that I had on
> the box, i.e. cweiss in ldap and cweiss in /etc/passwd.
>
> To further test change all your SID's manually with an graphical editor like
> GQ. I'm guessing you don't have too many because it's a test install. Also
> make sure to change the SID's of any computers you added.
>
> When I initially found this problem I created a new function in the adduser
> script to find the highest UID and increment by one. The user sid is
> calculated by UID+RID*2
UID*2 + 1000
GID*2 + 1001
is the traditional algorithm. Use it if possible.
--
Andrew Bartlett abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team abartlet at samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
http://samba.org http://build.samba.org http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20031113/5efabcdf/attachment.bin
More information about the samba
mailing list