[Samba] Domain authentification problem with LDAP

Craig White craigwhite at azapple.com
Fri Mar 17 21:03:28 GMT 2006

On Fri, 2006-03-17 at 15:08 -0500, Daniel Tousignant wrote:
> The objectclass sambaSAMAccount and subsequent fields have been
> created. We are using the standard perl script tools that are installed
> with
> the mandriva 2006 distro (samba 3.0.13 and openldap 2.3.6).
> What I really do not understand is that if I put a user in the standard
> ldap
> group "Domain Admins" (gid=512), the user is able to logon to the domain,
> but not 
> when it is in the "Domain Users" group (gid=513). What is the big
> difference for Samba
> between the two's ? Can it be an ACL problems ?
not very likely to be an ACL problem.

net groupmap list|grep Domain

net getlocalsid

why don't you post up what comes from those commands...


More information about the samba mailing list