[Samba] Samba domain groups

=?us-ascii?Q?=22Bj=F8rn_Fahn=F8e=22?= bf at bf-data.dk
Thu Feb 23 15:33:31 GMT 2006


>> net groupmap list
>Assuming that this is your PDC system, and this is a new install
>
>net getlocalsid would give you the SID for your domain and the only ones
>of interest are the ones that match the SID obtained from 'net
>getlocalsid'
>
>Notice the symmetry here...
>
>[root at srv1 /]# net getlocalsid
>SID for domain SRV1 is: S-1-5-21-0123456789-0123456789-0123456789
>
>
>[root at srv1 /]# pdbedit -Lv |grep SID
>User SID:             S-1-5-21-0123456789-0123456789-0123456789-2006
>Primary Group SID:    S-1-5-21-0123456789-0123456789-0123456789-553
>User SID:             S-1-5-21-0123456789-0123456789-0123456789-2016
>Primary Group SID:    S-1-5-21-0123456789-0123456789-0123456789-513
>User SID:             S-1-5-21-0123456789-0123456789-0123456789-2008
>Primary Group SID:    S-1-5-21-0123456789-0123456789-0123456789-513
>User SID:             S-1-5-21-0123456789-0123456789-0123456789-1000
>Primary Group SID:    S-1-5-21-0123456789-0123456789-0123456789-513
>User SID:             S-1-5-21-0123456789-0123456789-0123456789-1001
>Primary Group SID:    S-1-5-21-0123456789-0123456789-0123456789-513
>User SID:             S-1-5-21-0123456789-0123456789-0123456789-2014
>Primary Group SID:    S-1-5-21-0123456789-0123456789-0123456789-513
>User SID:             S-1-5-21-0123456789-0123456789-0123456789-2018
>Primary Group SID:    S-1-5-21-0123456789-0123456789-0123456789-513
>User SID:             S-1-5-21-0123456789-0123456789-0123456789-2020
>Primary Group SID:    S-1-5-21-0123456789-0123456789-0123456789-513
>
>[root at srv1 /]# net groupmap list
>Domain Computers (S-1-5-21-0123456789-0123456789-0123456789-553) ->
>Domain Computers
>Domain Admins (S-1-5-21-0123456789-0123456789-0123456789-512) -> root
>Domain Users (S-1-5-21-0123456789-0123456789-0123456789-513) ->
>dom_users
>Domain Guests (S-1-5-21-0123456789-0123456789-0123456789-514) -> Domain
>Guests
>Administrators (S-1-5-21-0123456789-0123456789-0123456789-544) ->
>Administrators
>Guests (S-1-5-21-0123456789-0123456789-0123456789-546) -> Guests
>Power Users (S-1-5-21-0123456789-0123456789-0123456789-547) -> Power
>Users
>Account Operators (S-1-5-21-0123456789-0123456789-0123456789-548) ->
>Account Operators
>Server Operators (S-1-5-21-0123456789-0123456789-0123456789-549) ->
>Server Operators
>Print Operators (S-1-5-21-0123456789-0123456789-0123456789-550) -> Print
>Operators
>Backup Operators (S-1-5-21-0123456789-0123456789-0123456789-551) ->
>Backup Operators
>Replicator (S-1-5-21-0123456789-0123456789-0123456789-552) -> Replicator
Thank you for your answer.
And yes it's a new test installation, before I make a final one

for pdbedit -Lv |grep SID I get:

User SID:             S-1-5-21-57081839-3644741509-3819056003-2000
Primary Group SID:    S-1-5-21-57081839-3644741509-3819056003-2003
User SID:             S-1-5-21-57081839-3644741509-3819056003-1000
Primary Group SID:    S-1-5-21-1760016482-394088656-2614712563-512

and for net groupmap list I get:

Account Operators (S-1-5-32-548) -> -1
Administrators (S-1-5-32-544) -> -1
Backup Operators (S-1-5-32-551) -> -1
bf (S-1-5-21-57081839-3644741509-3819056003-2003) -> bf
Domain Admins (S-1-5-21-1760016482-394088656-2614712563-512) -> root
Domain Admins (S-1-5-21-1941513877-1053742263-1100610399-512) -> -1
Domain Admins (S-1-5-21-57081839-3644741509-3819056003-512) -> -1
Domain Guests (S-1-5-21-1760016482-394088656-2614712563-514) -> nogroup
Domain Guests (S-1-5-21-1941513877-1053742263-1100610399-514) -> -1
Domain Guests (S-1-5-21-57081839-3644741509-3819056003-514) -> -1
Domain Users (S-1-5-21-1760016482-394088656-2614712563-513) -> users
Domain Users (S-1-5-21-1941513877-1053742263-1100610399-513) -> -1
Domain Users (S-1-5-21-57081839-3644741509-3819056003-513) -> -1
elever (S-1-5-21-1760016482-394088656-2614712563-1002) -> elever
Guests (S-1-5-32-546) -> -1
laerere (S-1-5-21-1760016482-394088656-2614712563-1001) -> laerere
Power Users (S-1-5-32-547) -> -1
Print Operators (S-1-5-32-550) -> adm
Replicators (S-1-5-32-552) -> -1
System Operators (S-1-5-32-549) -> -1
Users (S-1-5-32-545) -> -1

Is it wrong? What can I do to correct?
Bjørn Fahnøe




More information about the samba mailing list