[Samba] Group SID problems?

[jonlists]

Now that I look at this further, I notice that the "Domain Users", "Domain 
Admins", etc are not assigned..... mapped. 

Unfortunately, trying to assign them using the net groupmap modify results 
in a complaint the first time that the group "Domain Admins" doesn't exist 
in mapping DB (which it doesn't because it's LDAP, although you can't add 
it due to spaces). 
net groupmap add "Domain Users" unixgroup=users complains that "group 1002 
already exists in LDAP 

So the key here is how I add "Domain users" to OpenLDAP, then map that 
group to unixgroup users. ....... correct? 

Jon Johnston
Creative Business Solutions
IBM, Microsoft, Novell/Suse, Sophos Consultants
http://www.cbsol.com
blog:http://bingo.cbsol.com

samba-bounces+jonlists=cbsol.com at lists.samba.org wrote on 05/17/2005 
11:32:39 AM:

> Have a site where the network users are connecting to most shares 
through 
> group usage. Unfortunately, access to Samba is sporadic. Sometimes they 
> connect okay, sometimes they can't connect at all. 
> 
> Looking at their system config, I notice that the SID's for the groups 
> look..... odd. The users group ends in 3005.... but each user's 
> PrimaryGroupSID is a group with a SID that ends in 1201, and there is no 

> group that I can find with this SID. This site uses a LDAP backend. 
> 
> The question is - what specifically should I look for in the logs to 
> verify that incorrect "mapping" of group SID's would cause the issue 
with 
> sporadic connectivity? (there doesn't seem to be any issue of network 
> connectivity). 
> 
> Thanks for any insight, ideas.......
> 
> Jon Johnston
> Creative Business Solutions
> IBM, Microsoft, Novell/Suse, Sophos Consultants
> http://www.cbsol.com
> blog:http://bingo.cbsol.com
> -- 
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/listinfo/samba