[Samba] Auth failing - idmap_rid?

Brian Hoover disposable at vidar.com
Tue Feb 1 20:11:23 GMT 2005

The samba server is FC3 / samba 3.0.10 (Fedora package w/ idmap_rid

The samba server shows up in the browse list, but when you select it
from an XP machine windows spits up "\\ server is not accessable" yada
yada "The user name could not be found"  The following shows up twice in

[2005/02/01 14:00:27, 0] sam/idmap_rid.c:rid_idmap_get_id_from_sid(461)
  rid_idmap_get_id_from_sid: no suitable range available for sid:
If I run:

#wbinfo -s S-1-5-21-601769246-1165110998-860360866-2946
VIDAR\All Vidar Employees 2


#wbinfo -n 'All Vidar Employees'
S-1-5-21-1606980848-117609710-1547161642-1325 Domain Group (2)

The SIDs not matching confuses me, but the real question is what is
wrong with my uid / gid ranges.

/*/*/*/*/*/*/ smb.conf /*/*/*/*/*/*/*/*

	unix charset = LOCALE
	workgroup = VIDAR
	realm = VIDAR.CORP
	server string = BIS05
	security = ADS
	allow trusted domains = No
	log level = 1
	syslog = 0
	log file = /var/log/samba/%m
	max log size = 250
	ldap ssl = no
	idmap backend = idmap_rid:VIDAR=10000-20000
	idmap uid = 10000-20000
	idmap gid = 10000-20000
	template shell = /bin/bash
	template primary group = 'Domain Users'
	winbind enum users = No
	winbind enum groups = No
	winbind use default domain = Yes
	winbind nested groups = Yes

	comment = User Folders
	path = /smb/users
	admin users = bch
	read only = No
	guest ok = Yes

	comment = Users Folders
	valid users = %S
	read only = no
	browsable = no

More information about the samba mailing list