[Samba] Samba + LDAP error in windows xp while ACL
Gaiseric Vandal
gaiseric.vandal at gmail.com
Sun Nov 8 06:09:49 MST 2009
Did this use to work OK?
It sounds like samba is not properly mapping YOURDOMAIN\username in Windows
to the underlying unix account. Do you create the unix accounts first or
does samba automatically create them? Either way, I think your LDAP entry
for each user should include the unix uid number as well as the samba sid.
What happens if you type "wbinfo -s SID
S-1-5-21-4020846335-601350461-1468625926-27594?"
Also, if I am reading this correctly, the log files seem to indicate two
domains are involved here- *-3986255151-* and *-4020846335-*
I have had problems getting the SID to unix id mapping stuff working
properly with member samba servers (not with XP clients.) Can you try
removing and rejoining an XP machine to the domain?
-----Original Message-----
From: samba-bounces at lists.samba.org [mailto:samba-bounces at lists.samba.org]
On Behalf Of D.Rajan
Sent: Sunday, November 08, 2009 7:39 AM
To: samba at lists.samba.org
Subject: [Samba] Samba + LDAP error in windows xp while ACL
Dear all,
I am using Samba + PDC LDAP in a single server. From last month onward i am
facing problem
When I set manualy the acl (setfacl -m g:group:rwx the_file)
It's ok, the other domain member see the ACL
But when I set the acl with a Windows Workstation, that's don't work it
gives the furnished error :
sysadm at sangam:/var/log/samba$ tailf log.r-sys-03703
[2009/11/08 17:54:05, 0] auth/auth_util.c:create_builtin_users(758)
create_builtin_users: Failed to create Users
[2009/11/08 17:54:09, 0] passdb/pdb_ldap.c:ldapuser2displayentry(4211)
sid S-1-5-21-3986255151-1643105893-2919334401-3002 does not belong to our
domain
.
.
.
[2009/11/08 17:54:15, 0] auth/auth_util.c:create_builtin_users(758)
create_builtin_users: Failed to create Users
[2009/11/08 17:54:17, 0] smbd/posix_acls.c:create_canon_ace_lists(1438)
create_canon_ace_lists: unable to map SID
S-1-5-21-4020846335-601350461-1468625926-27594 to uid or gid.
C U Next Mail
Raj
Take Care
HAVE A NICE DAY
The INTERNET now has a personality. YOURS! See your Yahoo! Homepage.
http://in.yahoo.com/
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
More information about the samba
mailing list