[Samba] Re: Authentication against AD?
Dimitri Yioulos
dyioulos at firstbhph.com
Thu Sep 15 15:38:13 GMT 2005
On Thursday 15 September 2005 11:21 am, you wrote:
> </snip>
>
> >Oops, obviously these lines are uncommented (how'd I do that?):
> >
> >idmap uid = 10000-20000
> >idmap gid = 10000-20000
> >
> >Dimitri
>
> Odd, here is what I am getting when I do a net groupmap list:
>
> System Operators (S-1-5-32-549) -> -1
> Domain Admins (S-1-5-21-2000478354-789336058-725345543-512) -> -1
> Replicators (S-1-5-32-552) -> -1
> Guests (S-1-5-32-546) -> -1
> Domain Users (S-1-5-21-2247000946-2623471383-2375109730-513) -> -1
> Domain Users (S-1-5-21-2000478354-789336058-725345543-513) -> -1
> Power Users (S-1-5-32-547) -> -1
> Print Operators (S-1-5-32-550) -> -1
> Administrators (S-1-5-32-544) -> -1
> Domain Guests (S-1-5-21-2000478354-789336058-725345543-514) -> -1
> Domain Admins (S-1-5-21-2247000946-2623471383-2375109730-512) -> -1
> Account Operators (S-1-5-32-548) -> -1
> Domain Guests (S-1-5-21-2247000946-2623471383-2375109730-514) -> -1
> Backup Operators (S-1-5-32-551) -> -1
> Users (S-1-5-32-545) -> -1
>
> So this is a good indication I am a member server, but the startup logs
> are still indicating this as a logon server. Am I running the wrong
> command to join the domain?
>
> %> net ads join -U"admin" "ad_container_name"
Try "net ads join -U Nameusedwithkinit(e.g. Your Win2k3
Administrator)@MYDOMAIN.COM"
Dimitri
More information about the samba
mailing list