[Samba] ldapsam_getgroup
Gaiseric Vandal
gaiseric.vandal at gmail.com
Thu Jun 7 07:46:20 MDT 2012
You may need to set up unix groups and domain mappings for some
additional windows "well known groups" (google for windows well known
groups.)
on my server I can see my group mappings:
# net groupmap list
.....
Domain Users (S-1-5-21-xxxxx-xxxx-xxxxx-513) -> Domain Users
Administrators (S-1-5-32-544) -> Builtin Admins
Domain Controllers (S-1-5-21-xxxxx-xxxx-xxxxx-516) -> Domain Cont
rollers
....
Authenticated Users (S-1-5-11) -> Authenticated Users
Network (S-1-5-2) -> Network
Everyone (S-1-1-0) -> Everyone
....
So
#net groupmap add ntgroup="Authenticated Users " unixgroup=xxx
rid="S-1-5-11"
Or you can update in ldap.
On 06/07/12 05:56, Cédric Carlen wrote:
> Hello, hello
>
> I'm writing you this email because when i want to set up a password policy
> with LDAP, this one isn't recognize by samba.
>
> In the log i've got this :
>
> ldapsam_getgroup: Did not find group, filter was
> (&(objectClass=sambaGroupMapping)(sambaSID=S-1-5-11))
> ldapsam_getgroup: Did not find group, filter was
> (&(objectClass=sambaGroupMapping)(sambaSID=S-1-5-2))
> ldapsam_getgroup: Did not find group, filter was
> (&(objectClass=sambaGroupMapping)(sambaSID=S-1-1-0))
>
> When i look with LdapAdmin, i don't have SID like this. Why ldap check this
> SID if they don't exist ?
>
> Thanks for you help
>
> Flake
>
> P.S.: I don't past files, because I don't know which one could help
>
More information about the samba
mailing list