[Samba] Re: Re: Groupmapping doesn't work
John H Terpstra
jht at samba.org
Wed Oct 13 03:04:27 GMT 2004
On Tuesday 12 October 2004 20:46, jamrock wrote:
> "John H Terpstra" <jht at samba.org> wrote in message
> news:200410120630.31390.jht at samba.org...
>
...
> Hmmm...
>
> I am not sure I understand the process well enough to do that. All I know
> is that I have found a way to get group mapping to work based on Section
> 6.3.5 of Samba 3 by example.
>
> "At this time, Samba-3 requires that on a PDC all UNIX (Posix) group
> accounts that are mapped (linked) to Windows Domain Group accounts must be
> in the LDAP database."
>
> I don't know how or why. I just know that since I have done this, group
> mapping works beautifully on the systems that I have installed.
>
> See also chapter 6 of LDAP System Administration by Gerald Carter. The
> section on Information Migration gives detailed instructions on how to use
> the migration tools from www.padl.com.
>
> I copy the /etc/group account to another directory. I delete all the groups
> that don't map to Windows groups. (It is important to make sure that you
> are working with the copy when doing this). I then migrate the groups to a
> LDIF file and use the standard LDAP commands to import them into the
> directory.
>
> I will have a look at the Samba Howto and see if I can find a good place to
> stick in that sentence. I think it makes or breaks the process.
OK. I look forward to anything you can provide to help clarify the docs.
Cheers,
John T.
--
John H Terpstra
Samba-Team Member
Phone: +1 (650) 580-8668
Author:
The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556
Samba-3 by Example, ISBN: 0131472216
Hardening Linux, ISBN: 0072254971
OpenLDAP by Example, ISBN: 0131488732
Other books in production.
More information about the samba
mailing list