[Samba] Re: shifting samba machine
abe at blur.com
Mon Jan 10 20:27:16 GMT 2005
Jim C. wrote:
> | I tried this a week ago and afterward, none of the windows clients on
> | our network would recognize "admin users" (Domain admins) as actual
> | admin users.
> Could this have something to do with LDAP posixGroup's vrs.
> groupOfNames? posixGroup is outdated and cannot be used to gain access
> to the database itself. This means that your admins would not be able to
> do stuff like add/remove users but might be able to do things like
> delete users files and stuff. If you want admins to be database admins
> as well you need to add them to a groupOfNames type group also.
We were not using LDAP at all - just flat /etc/passwd, /etc/group and
/etc/samba/smbpasswd files. There isn't anything special about our
setup, but still the transfer/shift of PDC machines never did work.
Perhaps I needed to port over the "SID" from the old PDC to the new?
More information about the samba