[Samba] LDAP and Domain
Alex Satrapa
alex.satrapa at anu.edu.au
Tue Jul 13 23:32:01 GMT 2004
On 14 Jul 2004, at 03:39, Daniel Guerrero wrote:
> dn: uid=smbportia,ou=People,dc=deimos,dc=danguer,dc=com
> sambaSID: S-1-0-0-3004
That doesn't seem right to me - for the Windows Administrator, the
sambaSID and sambaPrimaryGroupSID should look something like
sambaSID: S-1-5-21-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-YYYY
sambaPrimaryGroupSID: S-1-5-21-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-512
Where the XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX is the same string of
numbers from your domain's sambaSID (the domain's sambaSID is stored in
an object with objectClass=sambaDomain):
[me at here]$ ldapsearch -h ldapserver -b "dc=x,dc=com,dc=au" -D \
"cn=admin,dc=x,dc=com,dc=au" -x -W sambaDomainName="DOMAIN"
dn: sambaDomainName=DOMAIN,o=smb,dc=x,dccom,dc=au
sambaDomainName: DOMAIN
sambaAlgorithmicRidBase: 1000
objectClass: sambaDomain
sambaSID: S-1-5-21-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX
Hope this helps
Alex
More information about the samba
mailing list