[Samba] rc3 net groupmap add fails (more information)

godfrey godber at win.co.nz
Wed Sep 10 07:41:07 GMT 2003 

This fails on rc2 as well, sorry don't have rc1 to try.

But if disable ldap it works, is there a bug in ldap backend?

Godfrey


John H Terpstra wrote:

>On Tue, 9 Sep 2003 godber at win.co.nz wrote:
>
>  
>
>>Sorry it still does no work
>>
>>Linux version is Mandrake 8.2 I made rc3 rpm using mandrake samba3 src rpm
>>with necessary minnor modifications
>>
>>Listed all groups so you can see rid not problem
>>
>>[root at server01 migration]# net3 groupmap list
>>Administrators (S-1-5-21-1617713866-2789119093-1479812082-512) -> root
>>Backup Operators (S-1-5-21-1617713866-2789119093-1479812082-1003) -> bin
>>Replicators (S-1-5-21-1617713866-2789119093-1479812082-1005) -> daemon
>>System Operators (S-1-5-21-1617713866-2789119093-1479812082-1007) -> sys
>>Print Operators (S-1-5-21-1617713866-2789119093-1479812082-1015) -> lp
>>Domain Admins (S-1-5-21-1617713866-2789119093-1479812082-21003) -> ntadmin
>>Staff (S-1-5-21-1617713866-2789119093-1479812082-22001) -> staff
>>Accounts (S-1-5-21-1617713866-2789119093-1479812082-22005) -> accounts
>>Family (S-1-5-21-1617713866-2789119093-1479812082-22007) -> family
>>Domain Guests (S-1-5-21-1617713866-2789119093-1479812082-514) -> nogroup
>>
>>[root at server01 migration]# net3 groupmap add ntgroup="Power Users" unixgroup=sys
>> type=d rid=1008
>>[2003/09/09 20:05:24, 0] passdb/pdb_ldap.c:ldapsam_add_group_mapping_entry(1911)
>>  Group 3 already exists in LDAP
>>adding entry for group Power Users failed!
>>
>>It does not seem to like multiple ntgroups to single unix group
>>    
>>
>
>Not quite! You can not have more than one NT Domain Group per UNIX Group.
>But you can have more than on NT Local Group per UNIX group.
>
>Try:
>
>net groupmap add ntgroup="Flying Pigs" unixgroup=sys type=l
>
>net groupmap list
>
>
>Here's my output:
>-----------------
>frodo:~ # net groupmap modify ntgroup=Replicators unixgroup=sys
>Updated mapping entry for Replicators
>
>frodo:~ # net groupmap list
>System Operators (S-1-5-32-549) -> sys
>Replicators (S-1-5-32-552) -> sys
>Guests (S-1-5-32-546) -> nobody
>Domain Users (S-1-5-21-1593769616-160655940-3590153233-513) -> users
>Domain Admins (S-1-5-21-1593769616-160655940-3590153233-512) -> root
>Domain Guests (S-1-5-21-1593769616-160655940-3590153233-514) -> nobody
>Power Users (S-1-5-32-547) -> sys
>Master (S-1-5-21-1593769616-160655940-3590153233-2345) -> master
>Print Operators (S-1-5-32-550) -> lp
>Administrators (S-1-5-32-544) -> root
>Account Operators (S-1-5-32-548) -> root
>Backup Operators (S-1-5-32-551) -> bin
>Users (S-1-5-32-545) -> users
>
>- John T.
>
>  
>
>>Many Thanks
>>
>>Godfrey
>>[SNIP]
>>    
>>
>>>Try:
>>>
>>>net groupmap add ntgroup="Power Users" unixgroup=sys type=d rid=1008
>>>
>>>
>>>      
>>>
>>>>Can multiple ntgroups map to a single unix group?
>>>>        
>>>>
>>>Yes.
>>>
>>>
>>>- John T.
>>>
>>>      
>>>
>>[SNIP]
>>
>>
>>    
>>
>
>  
>

More information about the samba mailing list