[Samba] XP Client brings another SID in
Geert Stappers
stappers at stappers.nl
Sat Oct 1 06:09:41 GMT 2005
On Sat, Oct 01, 2005 at 01:28:21AM +0200, Geert Stappers wrote:
>
> Hello,
>
>
> This about another attempt of joining a (samba controlled) domain.
>
> It is samba version 3.0.14 with a LDAP backend.
> The client is a Windows XP computer.
>
> I do get message "welcome to the domain" (reboot to activate)
> But an user login fails ...
>
>
> I think I have nailed it down to a strange SID that the client brings in.
>
> On a working system I have this LDAP entry:
>
> | dn: uid=tosh$,ou=Computers,ou=Users,dc=yourdomain,dc=tld
<snip/>
> | sambaSID: S-1-5-21-2689494773-1951033108-3857615256-5028
> | sambaPrimaryGroupSID: S-1-5-21-2689494773-1951033108-3857615256-515
>
> Note the same base SID
>
> On the failing system there is this after adding a client:
>
>
> | dn: uid=coco$,ou=Computers,ou=Users,dc=yourdomain,dc=tld
<snip/>
> | sambaSID: S-1-5-21-1217595360-3837695174-1118015926-5030
> | sambaPrimaryGroupSID: S-1-5-21-2202232871-2120539869-948389690-515
>
> Note the different base SID.
>
>
> Could be confirmed that base SIDs should be te same?
> (or could be told that it is okay ;-)
>
The output of
ldapsearch -LLLH ldaps://LDAPHOST \
-WxD uid=smbadmin,ou=people,ou=users,dc=yourdomain,dc=tld \
-b dc=yourdomain,dc=tld \
"(&(ObjectClass=posixAccount)(gidNumber=515))" \
sambaSID sambaPrimaryGroupSID
would be helpfull to determine the track to continue
>
> Anyway: which way to go ? ( or what to read next ? ;-)
>
Cheers
Geert Stappers
More information about the samba
mailing list