[Samba] Winbind - how to map ADS group to Unix group
Miles, Noal
noal.miles at tdstelecom.com
Fri Feb 25 22:05:34 GMT 2005
OK I set "winbind nested group = yes" option in smb.conf. Still can't quite
get it to work.
The only doc I can find says
net rpc group add wheel -L (why would I add this group, it is built in *nix
group?)
net rpc group addmem wheel "DOM\Domain Admins"
I don't even have smbd running, only winbind. The "wheel" group is a built
in Unix group. When I issue this command as the root account on the box the
winbind log says user 'root' does not exist. When I issue the command as an
ADS account the command returns "could not connect to server 127.0.0.1"
Am I missing something?
Thanks,
Noal
-----Original Message-----
From: Gerald (Jerry) Carter [mailto:jerry at samba.org]
Sent: Friday, February 25, 2005 1:47 PM
To: Miles, Noal
Cc: 'samba at lists.samba.org'
Subject: Re: [Samba] Winbind - how to map ADS group to Unix group
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Miles, Noal wrote:
| I am running 3.0.10-1.4E on RHEL4. The machine is
| a ADS member server. I would like to statically
| map the ADS group "Domain Admins" to the built in
| "wheel" group so all members of "Domain Admins"
| are in the "wheel" group.
Look at the 'winbind nested group' options in
smb.conf.
cheers, jerry
=====================================================================
Alleviating the pain of Windows(tm) ------- http://www.samba.org
GnuPG Key ----- http://www.plainjoe.org/gpg_public.asc
"I never saved anything for the swim back." Ethan Hawk in Gattaca
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCH4C6IR7qMdg1EfYRAsduAJwNIagA8CUtJysSgb/AS5cDS3eqJQCg3WV/
ugLJWhgpTukzAzuAKNIfja4=
=CZvc
-----END PGP SIGNATURE-----
More information about the samba
mailing list