[Samba] User auth-groups vs Win2k ADS Problems

Henrik Laursen hl at tarp.dk
Tue Oct 11 12:44:39 GMT 2005


Hello Everyone

 

This samba server was working perfectly without problems.

Running as an Domain member vs Win2K ADS

One day it stopped working. All that happened 5 days ago was a change of the
administrator/root password

 

We adjusted the wbinfo -set-auth-user towards the new password. But nothing
have worked since.

 

install:/ # wbinfo -V

Version 3.0.13-1.1-SUSE

 

What might be wrong when the following happen?

 

wbinfo -r TARP+hl
10000
10001
10010
10011
10012
10013
10015
10016
10017
10036

 

install:/var/log/samba # wbinfo -n TARP+hl
S-1-5-21-220523388-1957994488-854245398-2811 User (1)
install:/var/log/samba # wbinfo
--user-sids=S-1-5-21-220523388-1957994488-854245398-2811
Could not get group SIDs for user SID
S-1-5-21-220523388-1957994488-854245398-2811

 

Also the ACL groups on my folders and files seam to have become
corrupt/changed. I can still set users but not group ACLs. :/ (As shown
below)

 

 

install:/var/samba # getfacl preInstall

# file: preInstall

# owner: root

# group: root

user::rwx

user:root:rwx

group::rwx

group:root:rwx

mask::rwx

other::---

default:user::rwx

default:user:root:rwx

default:user:TARP+lkh:rwx

default:group::rwx

default:group:root:rwx

default:group:10000:rwx

default:group:10001:rwx

default:mask::rwx

default:other::---

 

Try to add a group to the ACL

install:/var/samba # setfacl -d -m 'g:tarp+domain admins:rwx' preInstall

setfacl: Option -m: Invalid argument near character 3

 

Try to add a user to the ACL

install:/var/samba # setfacl -d -m 'u:tarp+dhj:rwx' preinstall

no errors

 

Please if anyone can give me any hints of what to look for or had similary
experiences please reply. would an updated version of samba help? Anything

 

Regards

Daniel Jensen



More information about the samba mailing list