[Samba] Re: ADS valid users can't map share

Gerald (Jerry) Carter jerry at samba.org
Tue Oct 19 13:22:10 GMT 2004

Hash: SHA1

Igor Belyi wrote:
| Greg Adams wrote:
|> Yeah, that solved the problem for valid users. Thanks.
|> However, I now have a different problem. The same kind
|> of logic should apply to the username map, right? But it
|> doesn't seem to.
|> username.map:
|> !grega = "EDSADDDM+imguser"
|> So... it appears that the username map is not using the domain
|> information.
| I do believe it should... Could you provide 'log level = 10'
| from the  moment 'EDSADDDM+imguser' logs in and till it creates
| a file? This  should be logs for the '!grega = "EDSADDDM+imguser"'
| line in the map file.

I just checked on this and it looks like when you are a
domain member server, the username map honors the domain
portion of the username (on the LHS) when you authenticate
using kerberos but not when using NTLM.

Anyone besides me consider that a bug ?  However, changing
behavior is always risky.  Are there a lot of people utilizing
a username map with with a domain member server ?

cheers, jerry
- ---------------------------------------------------------------------
Alleviating the pain of Windows(tm)      ------- http://www.samba.org
GnuPG Key                ----- http://www.plainjoe.org/gpg_public.asc
"If we're adding to the noise, turn off this song"--Switchfoot (2003)
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org


More information about the samba mailing list