[Samba] RID/SIDs

John H Terpstra jht at Samba.Org
Fri Jan 28 16:37:14 GMT 2005


On Friday 28 January 2005 09:26, Christian HAESSIG wrote:
> Hi,
>
> does this mean that, in an ads domain, the net getlocalsid command must
> return the sid of the ads domain ?

The domain SID for a remote domain can be obtained by executing:

	net getlocalsid 'DOMAIN' -S [PDC | BDC]

- John T.

>
> Thanks for your answers,
>
> Christian
>
> > -----Message d'origine-----
> > De : samba-bounces+christian.haessig=ircad.u-strasbg.fr at lists.samba.org
> > [mailto:samba-bounces+christian.haessig=ircad.u-strasbg.fr at lists.samba.o
> > rg]De la part de John H Terpstra
> > Envoyé : vendredi 28 janvier 2005 17:08
> > À : samba at lists.samba.org; Daniel Corbe
> > Objet : Re: [Samba] RID/SIDs
> >
> > On Friday 28 January 2005 07:52, Daniel Corbe wrote:
> > > Hey
> > >
> > > Can someone point me to a FAQ or an RTFM on what SIDs and RIDs are and
> > > how to generate them properly?
> >
> > The SID is generated automatically by Samba. If you change a
> > Samba server name
> > or workgroup name a new SID will be generated. This is a strong
> > argument in
> > favor of backing up the SID. You can obtain the SID of the Samba
> > server by
> > executing:
> >
> > 	net getlocalsid
> > 	SID for domain FRODO is: S-1-5-21-726309263-4128913604-1168186429
> >
> > The SID can be restored by executing:
> > 	net setlocalsid S-1-5-21-726309263-4128913604-1168186429
> >
> > In a Windows NT4 or ADS domain the RID is generated as the
> > account is created.
> > The user SID = domain_SID+RID, in the above case the SID for my
> > user account
> > is S-1-5-21-726309263-4128913604-1168186429-4214.
> >
> > Samba uses an algorithm to create a RID from the users UID. The default
> > algorithm is:   RID = (UID x 2) + 1000
> >
> > The best source of documentation for how this is handled in Samba
> > is in the
> > source code.
> >
> > - John T.
> > --
> > John H Terpstra
> > Samba-Team Member
> > Phone: +1 (650) 580-8668
> >
> > Author:
> > The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556
> > Samba-3 by Example, ISBN: 0131472216
> > Hardening Linux, ISBN: 0072254971
> > Other books in production.
> > --
> > To unsubscribe from this list go to the following URL and read the
> > instructions:  https://lists.samba.org/mailman/listinfo/samba

-- 
John H Terpstra
Samba-Team Member
Phone: +1 (650) 580-8668

Author:
The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556
Samba-3 by Example, ISBN: 0131472216
Hardening Linux, ISBN: 0072254971
Other books in production.


More information about the samba mailing list