[Samba] Re: domain admin issue
Trey Nolen
tnolen at internetpro.net
Mon Aug 2 14:42:35 GMT 2004
> Have you tried:
>
> net getlocalsid
>
> SID for domain DOMAIN is:
> S-1-5-21-3876029557-4061927837-2224609541, ie. the SIDs should match.
>
> If they don't:
>
> 1. Stop samba
> 2. Delete "group_mapping.tdb"
> 3. Start samba
> 4. net groupmap modify ntgroup="Domain Admins" unixgroup=domadm etc.
>
> This should make a fresh group_mapping.tdb with correct SIDs.
>
Thanks for the reply. Unfortunately (I guess), they do already match:
server:~# net groupmap list
System Operators (S-1-5-32-549) -> -1
Replicators (S-1-5-32-552) -> -1
Guests (S-1-5-32-546) -> -1
Domain Users (S-1-5-21-3876029557-4061927837-2224609541-513) -> users
Power Users (S-1-5-32-547) -> -1
Print Operators (S-1-5-32-550) -> -1
Administrators (S-1-5-32-544) -> domadm
Domain Admins (S-1-5-21-3876029557-4061927837-2224609541-512) -> domadm
Account Operators (S-1-5-32-548) -> -1
Domain Guests (S-1-5-21-3876029557-4061927837-2224609541-514) -> nogroup
Backup Operators (S-1-5-32-551) -> -1
Users (S-1-5-32-545) -> -1
server:~# net getlocalsid
SID for domain SERVER is: S-1-5-21-3876029557-4061927837-2224609541
It seems like this *SHOULD* be working. Could this be a bug with this
version? I'll be glad to check anything else if there are other
suggestions...
Trey Nolen
More information about the samba
mailing list