[Samba] Please Help with Secondary Groups
Craig White
craigwhite at azapple.com
Fri Jan 9 23:33:32 GMT 2004
On Fri, 2004-01-09 at 15:21, MICHAEL BROWN wrote:
> I thought that the 1024 was only linked to the /etc/group file itself.
> Do you think that this could be the problem? If so, how does one get
> around that limitation??
>
> >>> Craig White <craigwhite at azapple.com> Friday, January 09, 2004 >>>
> On Fri, 2004-01-09 at 14:49, MICHAEL BROWN wrote:
> > Also Craig,
> > Your example group below "Domain Users" only has, if I count
> correctly,
> > 31 users. You have to get up to about 70-80 or so before you see
> what I
> > am seeing. My groups work as well with that few of users within the
> > secondary groups =)
> ---
> IIRC - there was a limit of 1024 characters per 'line' which would be
> the group itself.
>
> Craig
----
I had one last thought (assuming that the problem isn't in the version
of ldap that you are using - you might wish to check with padl)
are the SID's from your group and your local machine the same?
[root at linserv2 config]# ldapsearch -x -h localhost -D \
'cn=root,o=DOMAIN,c=US' -W '(cn=users-all)'
Enter LDAP Password:
version: 2
#
# filter: (cn=users-all)
# requesting: ALL
#
# users-all, Groups, DOMAIN, US
dn: cn=users-all,ou=Groups,o=DOMAIN,c=US
objectClass: posixGroup
objectClass: top
objectClass: sambaGroupMapping
cn: users-all
userPassword:: e2NyeXB0fXg=
gidNumber: 1000
memberUid: kbenedetto
memberUid: Administrator
memberUid: catchalladv
memberUid: catchallpr
memberUid: nkelley
sambaSID: S-1-5-21-1292501092-333717336-619646970-513
sambaGroupType: 2
displayName: Domain Users
description: Local Unix group
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
[root at linserv2 config]# net getlocalsid
SID for domain LINSERV2 is: S-1-5-21-1292501092-333717336-619646970
obvious the GID has the group # suffixed at the end but are otherwise
the same
Craig
More information about the samba
mailing list