[Samba] Samba3 in NT4 domain

Kryol okrg at ukr.net
Fri Dec 9 07:47:56 GMT 2005

Still having problem with NT4 domain. 
I have Samba 3.0.20 on FreeBSD 5.3 
My configuration looks like: 
workgroup = DOM 
netbios name = lanserver 
server string = Samba Server 
security = domain 
hosts allow = 10.200.4. 10.200.5. 127. 
log file = /var/log/samba/log.%m 
max log size = 50 
password server = PDC 
encrypt passwords = yes 
winbind uid = 15000-20000 
winbind gid = 15000-20000 
winbind use default domain = yes 
template homedir = /home/%U 
template shell = /bin/csh 
winbind separator = \\ 
winbind enum users = yes 
winbind enum groups = yes 
nt acl support = yes 
local master = no 
dns proxy = no 
dos charset = 866 
unix charset = KOI8-U 
auth methods = winbind 
socket options = TCP_NODELAY 
wins support = no 
Successfully connected to domain DOM. 
wbinfo -g and wbinfo -u works properly. 
But id returns primary group membership, i.e. 
lanserver# id administrator 
uid=15000(administrator) gid=15000(Domain Users) groups=15000(Domain Users) 
instead of 
ws170# uid=15000(administrator) gid=15002(domain users) groups=15002(domain users), 
15000(domain admins), 15003(exchange users), 15011(wsp) 
And another problem. 
I created a share: 
comment = Test share 
path = /home/samba/test 
valid users = administrator 
public = no 
writable = yes 
printable = no 
create mask = 0775 
force create mode = 0664 
force directory mode = 0755 
write list = administrator 
Share is visible from PDC Administrator account only if I specify 
 valid users = DOM\Administrator. 
I tried Administrator, '@domain admins', '@domain admins', '@HQ\domain admins' 
Write access to Samba tested from account above does not work never. 

More information about the samba mailing list