[Samba] "gid of user xxx doesn't exist" error repeatedly posted to /var/messages

simo idra at samba.org
Wed Feb 21 16:45:17 GMT 2007 

Tim, Windows user/group name space is unified, there should never be a
group with the same name of a user, that's why usually UPG is not the
preferred way to manage users to be shared with Windows hosts.

The only 2 options you have is to use just one (or a few) common groups
for users or have a prefix for groups names so that user:
name != personal group name

Simo.

On Wed, 2007-02-21 at 09:34 -0700, Fred Nuffer wrote:
> Tim,
> 
> Thanks for the quick response.
> 
> Our Red Hat installation uses the UPG convention by default, so I simply 
> trying to support it.  I will discontinue its use if I can't find a 
> workaround.  Samba 3 with ACL support and ntconfig.pol policies make it 
> somewhat redundant.
> 
> But, yes, that group cannot be found.  The UPG is is the primary group 
> of the user, and I _think_ Samba wants to chgrp the user to a different 
> group.  This fails because the UPG is not a Samba group.  If I map the 
> private group to Domain group of the same name, I run into netbios name 
> duplication problems.
> 
> Tim Boneko wrote:
> > Fred Nuffer schrieb:
> >> Feb 20 09:35:50 SUMSRVR smbd[27950]:   get_alias_user_groups: gid of
> >> user xxx doesn't exist. Check your /etc/passwd and /etc/group files
> > 
> > Only to make sure i got it right:
> > You create your users with their own group name, i.e. user fred is
> > member of the group fred. This group name cannot be found by samba
> > because samba only knows your domain groups. Is that right?
> > 
> > If so, do you need these "private groups"? I create my users with
> > primary group "users" which is hinted at by my "Domain Users" group.
> > I see the downside of home directories being group accessible, but you
> > can still do "chmod 700" on a home directory which lets in only the
> > owner. Samba allows manifold policy settings, share specific or global.
> > 
> > If you can't or won't put your users into a common group, i will try to
> > find a different solution. Will be tricky - the thinking most of all ;-)
> > 
> > 
> >    timbo
> 
> -- 
> Best regards,
> 
> L. Fred Nuffer
-- 
Simo Sorce
Samba Team GPL Compliance Officer
email: idra at samba.org
http://samba.org

More information about the samba mailing list