[Samba] output from pdbedit - does not belong to our domain

Dermot paikkos at gmail.com
Wed Oct 6 03:51:20 MDT 2010


I'm am in the process of migrating my old NT4 PDC to a Samba 3.2.5
with an Ldap backend. I have been following the instructions from

At point 16 is says to try pdbedit -Lw

This is the output I get:

sid S-1-5-21-1979685110-1467996072-351907979-500 does not belong to our domain
sid S-1-5-21-1979685110-1467996072-351907979-2998 does not belong to our domain
sid S-1-5-21-1979685110-1467996072-351907979-3010 does not belong to our domain

That's not what I expected. Does anyone know why this might be? I did
remove /var/lib/samba/*tdb before I began.

Point 17 works:

net groupmap list
Domain Admins (S-1-5-21-1979685110-1467996072-351907979-512) -> 512
Domain Users (S-1-5-21-1979685110-1467996072-351907979-513) -> 513
Domain Guests (S-1-5-21-1979685110-1467996072-351907979-514) -> 514
Domain Computers (S-1-5-21-1979685110-1467996072-351907979-515) -> 515
Administrators (S-1-5-32-544) -> 544
Account Operators (S-1-5-32-548) -> 548
Print Operators (S-1-5-32-550) -> 550
Backup Operators (S-1-5-32-551) -> 551
Replicators (S-1-5-32-552) -> 552

According to LDAP the SambaDomainName SID is
S-1-5-21-900663976-1457140431-1537874043. Is there meant to be some
correlation between the Domain SID and the group list?

net rpc info -UAdministrator -S MyPDC
Enter Administrator's password:
Domain Name: OurDom
Domain SID: S-1-5-21-900663976-1457140431-1537874043
Sequence number: 2946
Num users: 117
Num domain groups: 3
Num local groups: 0

Can anyone offer some guidance please?

More information about the samba mailing list