[Samba] SRVTOOLS issues
Maxime Woznicki
maxime.woznicki at club-internet.fr
Thu Aug 18 16:48:59 GMT 2005
Hello,
I use Samba 3.0.14a acting as simple PDC (using tdbsam), ext3 acls and
kernel 2.6.5. All work fine
What is the correct configuration to obtain a maximum compatiblity with
USRMGR ? :
add user script = /usr/sbin/useradd -s /bin/false -d /dev/null %u
add group script = /usr/sbin/groupadd %g
add user to group script = /usr/sbin/usermod -G %g %u
add machine script = /usr/sbin/useradd -s /bin/false -d /dev/null -g
machines %u
delete user script = /usr/sbin/userdel %u
delete group script = /usr/sbin/groupdel %g
delete user from group script = /usr/sbin/deluser %u %g
with groupmaps :
System Operators (S-1-5-32-549) -> -1
Domain Admins (S-1-5-21-1234032427-2839496750-1210694437-512) -> admins
Secretariat (S-1-5-21-1234032427-2839496750-1210694437-5003) -> secretariat
Replicators (S-1-5-32-552) -> -1
Guests (S-1-5-32-546) -> -1
Domain Guests (S-1-5-21-1234032427-2839496750-1210694437-514) -> nobody
Finances (S-1-5-21-1234032427-2839496750-1210694437-3007) -> finances
Power Users (S-1-5-32-547) -> -1
Domain Users (S-1-5-21-1234032427-2839496750-1210694437-513) -> users
Print Operators (S-1-5-32-550) -> -1
Administrators (S-1-5-32-544) -> admins
Stagiaires (S-1-5-21-1234032427-2839496750-1210694437-3009) -> stagiaires
Account Operators (S-1-5-32-548) -> -1
Backup Operators (S-1-5-32-551) -> -1
Users (S-1-5-32-545) -> users
Domain Computers (S-1-5-21-1234032427-2839496750-1210694437-3011) ->
machines
Technique (S-1-5-21-1234032427-2839496750-1210694437-3005) -> technique
The problem is that doing operations on groups (changing primary group
of a user, adding a user to a group, etc...) lead error messages and
strange behaviour.
For example, user joe is initially created with primary group "Domain Users"
When I add another group "technique" and set it to its primary group, It
works (set in tdbsam but not in /etc/group /etc/passwd) but when trying
to deleted joe from "Domain Users", access is refused...
Thx for help (not man or samba howto plz, I've already red them)
Max
More information about the samba
mailing list