[Samba] Migration from NT4 to Samba PDC : problem with machine sid ?

[Gérard Guével]

Hello,

I'm trying to migrate a PDC from NT4 to Samba.
Samba version is 3.0.7 with a passdb backend = tdbsam.

The migration goes right and I retreived the users, groups
and machines accounts with the net rpc vampire command.

The domain SID is S-1-5-21-1957908234-1424639752-1538882281

for my user account, I get these informations :
Unix username:        geg
NT username:          geg
Account Flags:        [U          ]
User SID:             S-1-5-21-1957908234-1424639752-1538882281-1011
Primary Group SID:    S-1-5-21-1957908234-1424639752-1538882281-1038
Full Name:            Gerard Guevel

for my machine account I get these informations :
Unix username:        GEG2400$
NT username:          GEG2400$
Account Flags:        [W          ]
User SID:             S-1-5-21-1957908234-1424639752-1538882281-1144
Primary Group SID:    S-1-5-21-1957908234-1424639752-1538882281-513

It seems to be right for me because all sid are formed as
S-1-5-21 - < domain SID> - sequence. The uid/gid are right.

So when I turn the samba server on PDC, I can connect to the domain
with my name and I can go through the shared directories on the PDC.

The problem is that Samba does not see the other servers in the domain
as if the machine sid are wrong.

If I use a psgetsid tool, I get the following sid :
SID for \\geg2400: 	S-1-5-21-1090110705-1600816324-972832914
SID for \\samba3000:	S-1-5-21-1957908234-1424639752-1538882281

I don't understand if machine sid on the PDC have to be formed as
user account sid S-1-5-21 - < domain SID> - sequence or
must be the external domain sid ?

Thanks for any tips
Gérard